Regulatory and Industry Compliance: By Regulation

Various compliance regulations, industry standards and privacy acts have emerged in the last decade. Many of these are focused on preventing fraudulent activity, loss of sensitive information, and reducing the risk of data breaches. The associated costs of violations, including penalties, disclosure, remediation, legal actions and reputation damage, continue to rise as more regulations are being enforced.

Imperva enables organizations to meet the most challenging regulatory and industry compliance requirements with cost effective solutions which are easy to deploy and manage.

Key Drivers

Payment Card Industry Data Security Standard (PCI DSS)

PCI DSS is mainly concerned with securing card-holder information against data breaches. Imperva solutions help organizations meet 8 of the 12 high-level requirements, including the key requirements that strategically impact Web, database and file security.

Sarbanes-Oxley Act (SOX)

SOX was enacted to protect the integrity of financial data disclosed by public companies, prevent fraudulent activity and enhance corporate responsibility. Imperva solutions enable public companies to audit all changes to regulated data, and alert or block fraudulent activities and unauthorized access to regulated data.

Health Insurance Portability and Accountability Act (HIPAA)

HIPAA addresses the security and privacy of electronic protected health data (ePHI) and security concerns associated with the electronic transmission of health information. Imperva solutions protect ePHI stored in databases and files from unauthorized access and leakage by managing access based on need-to-know and auditing data usage.

Additional Regulations

Many other regulations and privacy acts were enacted to protect sensitive information from breach, abuse and leakage. Imperva enables regulated organizations to conduct risk assessments, validate configurations, audit changes that impact regulated data, protect web portals and streamline compliance processes.