{"id":27808,"date":"2023-10-31T14:57:41","date_gmt":"2023-10-31T14:57:41","guid":{"rendered":"https:\/\/www.trustguard.eu\/online-payments\/standards\/"},"modified":"2025-06-02T09:54:02","modified_gmt":"2025-06-02T09:54:02","slug":"standards","status":"publish","type":"page","link":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/","title":{"rendered":"Standards"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-page\" data-elementor-id=\"27808\" class=\"elementor elementor-27808 elementor-24146\" data-elementor-post-type=\"page\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-582753c elementor-section-height-min-height elementor-section-boxed elementor-section-height-default elementor-section-items-middle\" data-id=\"582753c\" data-element_type=\"section\" data-e-type=\"section\" data-settings=\"{&quot;background_background&quot;:&quot;slideshow&quot;,&quot;background_slideshow_ken_burns&quot;:&quot;yes&quot;,&quot;background_slideshow_gallery&quot;:[{&quot;id&quot;:26960,&quot;url&quot;:&quot;https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/TG-rapporten.jpg&quot;}],&quot;background_slideshow_loop&quot;:&quot;yes&quot;,&quot;background_slideshow_slide_duration&quot;:5000,&quot;background_slideshow_slide_transition&quot;:&quot;fade&quot;,&quot;background_slideshow_transition_duration&quot;:500,&quot;background_slideshow_ken_burns_zoom_direction&quot;:&quot;in&quot;}\">\n\t\t\t\t\t\t\t<div class=\"elementor-background-overlay\"><\/div>\n\t\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-ff050dc\" data-id=\"ff050dc\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-inner-section elementor-element elementor-element-e07eebf elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"e07eebf\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-inner-column elementor-element elementor-element-91996fa\" data-id=\"91996fa\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-515f9f7 elementor-widget__width-auto elementor-widget elementor-widget-heading\" data-id=\"515f9f7\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h1 class=\"elementor-heading-title elementor-size-default\">Standards<\/h1>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-77335df elementor-widget__width-initial elementor-widget elementor-widget-heading\" data-id=\"77335df\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">See at a glance if you meet your own industry's security standards.<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-bc438b2 elementor-align-left elementor-widget elementor-widget-button\" data-id=\"bc438b2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm elementor-animation-grow\" href=\"#standards\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t<span class=\"elementor-button-icon\">\n\t\t\t\t<i aria-hidden=\"true\" class=\"fas fa-chevron-down\"><\/i>\t\t\t<\/span>\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Read more<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-dc879cf elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"dc879cf\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-939cc4d\" data-id=\"939cc4d\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-9b741e9 elementor-widget elementor-widget-spacer\" data-id=\"9b741e9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-0effbc8 elementor-widget elementor-widget-html\" data-id=\"0effbc8\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"html.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<div id=\"content\"><\/div>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ca5faea elementor-widget elementor-widget-menu-anchor\" data-id=\"ca5faea\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"menu-anchor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-menu-anchor\" id=\"standards\"><\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-a8f4d6d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"a8f4d6d\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-d85c2c4\" data-id=\"d85c2c4\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-55d9031 elementor-widget elementor-widget-heading\" data-id=\"55d9031\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Reports in different standards<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3532bbc elementor-widget__width-inherit elementor-widget elementor-widget-text-editor\" data-id=\"3532bbc\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Reports according to various industry standards are available in Trust Guard&#8217;s dashboard. These include PCS DSS, GDPR, ISO27001, OWASP, HIPAA,\u00a0 SOx and NIS2. This allows you to see at a glance whether you meet the requirements your industry places on you.<\/p>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-1669b3f elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"1669b3f\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-eee599b\" data-id=\"eee599b\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-54beda2 elementor-widget__width-inherit elementor-tabs-view-horizontal elementor-widget elementor-widget-tabs\" data-id=\"54beda2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"tabs.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-tabs\">\n\t\t\t<div class=\"elementor-tabs-wrapper\" role=\"tablist\" >\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8881\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"true\" data-tab=\"1\" role=\"tab\" tabindex=\"0\" aria-controls=\"elementor-tab-content-8881\" aria-expanded=\"false\">PCI DSS<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8882\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"2\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8882\" aria-expanded=\"false\">GDPR<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8883\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"3\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8883\" aria-expanded=\"false\">ISO27001<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8884\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"4\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8884\" aria-expanded=\"false\">OWASP<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8885\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"5\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8885\" aria-expanded=\"false\">HIPAA<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8886\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"6\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8886\" aria-expanded=\"false\">SOx<\/div>\n\t\t\t\t\t\t\t\t\t<div id=\"elementor-tab-title-8887\" class=\"elementor-tab-title elementor-tab-desktop-title\" aria-selected=\"false\" data-tab=\"7\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8887\" aria-expanded=\"false\">NIS2<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t<div class=\"elementor-tabs-content-wrapper\" role=\"tablist\" aria-orientation=\"vertical\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"true\" data-tab=\"1\" role=\"tab\" tabindex=\"0\" aria-controls=\"elementor-tab-content-8881\" aria-expanded=\"false\">PCI DSS<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8881\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"1\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8881\" tabindex=\"0\" hidden=\"false\"><h3><img decoding=\"async\" class=\"alignnone size-full wp-image-26988\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png\" alt=\"logo pci\" width=\"253\" height=\"83\" \/><\/h3>\n<p><\/p>\n<h3>A little history: All card issuers own standard<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Before 2004, all card issuers had their own standard to ensure that merchants achieved a minimum level of security when storing, processing and transmitting cardholder data. It was difficult for merchants who used multiple cards from different card issuers to comply with the different standards.<\/p>\n<p><\/p>\n<p class=\"bodytext\">The major credit card organizations made a concerted effort, resulting in the release of version 1.0 of PCI DSS (Payment Card Industry Data Security Standard) in December 2004. MasterCard, American Express, Visa, JCB International and Discover Financial Services established the PCI SSC (Payment Card Industry Security Standards Council) in September 2006 as an administration \/ governing body that promotes the development of PCI DSS. Independent \/ private organizations can participate in PCI development after proper registration.<\/p>\n<h3>The PCI DSS standard<\/h3>\n<p><\/p>\n<p class=\"bodytext\">The PCI DSS standard was developed to increase control over cardholder data and reduce credit card fraud. PCI DSS is monitored and implemented worldwide. The latest version of PCI DSS is 3.2.1 and was released in May 2018. The PCI Data Security Standard specifies 12 requirements for compliance. These are organized into six logically related groups called &#8220;control objectives.&#8221;<\/p>\n<p><\/p>\n<p class=\"bodytext\">The six groups are:<br \/>\n1. Build and maintain a secure network and secure systems<br \/>\n2. Protect cardholder data<br \/>\n3. Maintain a vulnerability management program<br \/>\n4. Implement strong access control measures<br \/>\n5. Monitor and test networks regularly<br \/>\n6. Provide information security policies<\/p>\n<h3>Vulnerability Management<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Vulnerability management is the cyclical working method to identify, classify, prioritize, correct and mitigate software vulnerabilities. Vulnerability management is an integral part of computer security and network security. Vulnerabilities can be discovered with a vulnerability scanner, which analyzes a computer system and looks for known vulnerabilities, such as open ports, insecure software configurations and susceptibility to malware infections.<\/p>\n<p><\/p>\n<p class=\"bodytext\">In the event of a security breach, a compromised company that was not PCI DSS compliant at the time of breach will face additional penalties, such as fines. For your information, enforcement and compliance with the PCI DSS and the determination of fines are performed by individual card issuers, not the Council. Questions in this area should be directed to the card issuers..<\/p>\n<h3>Trust Guard PCI DSS report ensures level 2, 3 and 4 compliance<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Trust Guard&#8217;s vulnerability scan is performed by a PCI Security Standard Council-approved scanning company and, along with the self-assessment questionnaire (SAQ), will prove PCI compliance for levels 2, 3 and 4.<\/p>\n<p><a href=\"https:\/\/www.pcisecuritystandards.org\/\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"2\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8882\" aria-expanded=\"false\">GDPR<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8882\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"2\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8882\" tabindex=\"0\" hidden=\"hidden\"><h3><img decoding=\"async\" class=\"alignnone size-full wp-image-32300\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2024\/07\/logo-gdpr.png\" alt=\"logo gdpr\" width=\"150\" height=\"\" \/><\/h3>\n<p><\/p>\n<h3>GDPR regulates handling of personal data for business<\/h3>\n<p><\/p>\n<p class=\"bodytext\">The GDPR went into effect in May 2016 and companies have been given until May 25, 2018, to bring their business operations into compliance with the GDPR. The General Data Protection Regulation (GDPR) affects all companies in Europe that store personal data. This legislation regulates how companies should handle personal data, technically and organizationally.<\/p>\n<h3>Not complying with GDPR rules leads to fines<\/h3>\n<p><\/p>\n<p class=\"bodytext\">When a company fails to comply with GDPR rules, the maximum fine can be 20 million euros or 4% of annual global turnover, whichever is higher.<\/p>\n<h3>The Trust Guard GDPR report offers evidence support<\/h3>\n<p><\/p>\n<p class=\"bodytext\">On the technical side, Trust Guard can provide assistance with the GDPR. With our scan, we test at many points whether your website and\/or network is secure. From this, you can create <a href=\"https:\/\/trustguard.one-sw.nl\/en\/blog-en\/gdpr-reporting-available-in-trust-guard\/\">a pdf report<\/a> as proof that you are doing everything possible to comply with GDPR.<\/p>\n<p><a href=\"https:\/\/gdpr.eu\/\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"3\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8883\" aria-expanded=\"false\">ISO27001<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8883\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"3\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8883\" tabindex=\"0\" hidden=\"hidden\"><h3><img decoding=\"async\" class=\"alignnone size-full wp-image-27000\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-iso27001.png\" alt=\"logo27001\" width=\"125\" height=\"300\" \/><\/h3>\n<p><\/p>\n<h3>ISO27001 specifies management of security risks<\/h3>\n<p>The origin of ISO27001 certification lies in the English &#8220;Code of Practice for Information Security Management.&#8221; This refers to a special management system for information security and specifies how you can demonstrably control security risks.<\/p>\n<p>The ISO27001 standard includes several aspects related to information security, including system and software development and maintenance (documentation, processes). The standard states that you define a scope and policy, perform a risk analysis, select measures for identified risks, and implement and manage them.<\/p>\n<h3>Maintaining ISO27001 certification is a continuous process<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Achieving and maintaining ISO27001 certification is an ongoing process. With the ISO27001 certification, you are &#8220;in control&#8221; as far as your security risks are concerned.<\/p>\n<h3>The Trust Guard report provides insight into the risks according to ISO27001<\/h3>\n<p><\/p>\n<p class=\"bodytext\">When identifying the risks you face with your network, the Trust Guard security scan can help you. We scan your network and inform you about the risks you are running and possible solutions. You can also create a report that provides insight into the risks according to this standard.<\/p>\n<p><a href=\"https:\/\/www.iso.org\/standard\/27001\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"4\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8884\" aria-expanded=\"false\">OWASP<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8884\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"4\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8884\" tabindex=\"0\" hidden=\"hidden\"><h3><img decoding=\"async\" class=\"alignnone wp-image-37637 \" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2025\/06\/logo-owasp.png\" alt=\"logo owasp\" width=\"171\" height=\"59\" srcset=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2025\/06\/logo-owasp.png 1000w, https:\/\/www.trustguard.eu\/wp-content\/uploads\/2025\/06\/logo-owasp-300x104.png 300w\" sizes=\"(max-width: 171px) 100vw, 171px\" \/><\/h3>\n<p><\/p>\n<h3>OWASP makes software security transparent<\/h3>\n<p><\/p>\n<p class=\"bodytext\">The Open Web Application Security Project, or OWASP, is an international nonprofit organization focused on Web application security. Their mission is to make software security transparent so that individuals and organizations can make informed decisions regarding their security. The best-known OWASP project is the OWASP Top 10.<\/p>\n<h3>10 most important Web application security risks<\/h3>\n<p><\/p>\n<p class=\"bodytext\">The OWASP Top 10 is a regularly updated report that outlines aspects for Web application security. It focuses on the 10 most important risks. The report is compiled by a team of security experts from around the world. OWASP refers to the Top 10 as an &#8220;awareness document,&#8221; and they recommend that all companies incorporate the report into their processes to minimize and\/or mitigate security risks.<\/p>\n<h3>The Trust Guard OWASP report shows scan results according to the OWASP Top 10<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Trust Guard&#8217;s security scan scans multiple vulnerabilities, including the 10 top risks defined by the OWASP Top 10 and can generate a report with the scan findings based on those Top 10.<\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"5\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8885\" aria-expanded=\"false\">HIPAA<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8885\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"5\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8885\" tabindex=\"0\" hidden=\"hidden\"><h3><img decoding=\"async\" class=\"alignnone size-full wp-image-27008\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-hipaa.png\" alt=\"logo hipaa\" width=\"150\" height=\"\" \/><\/h3>\n<p><\/p>\n<h3>Privacy protection for the healthcare industry<\/h3>\n<p>The Health Insurance Portability and Accountability Act (HIPAA for short) is 1996 U.S. legislation for the health care industry. HIPAA is best known in Europe for the privacy protections it expressly provides for the healthcare industry.<\/p>\n<p>This Act describes a number of standard protocols for data transmission. The &#8220;Security Rule&#8221; describes standards regarding information security, proposing procedural, technical and physical security measures.<\/p>\n<p>HIPAA regulations have shaped developments around privacy protection. The development of technical security measures in particular was triggered by HIPAA, and awareness around achieving adequate privacy protection would presumably have been considerably slower to materialize.<\/p>\n<h3>The Trust Guard HIPAA report provides support for proof of data security<\/h3>\n<p><\/p>\n<p class=\"bodytext\">With respect to checking the security of your network, the Trust Guard security scan can help by identifying vulnerabilities and providing solutions. Also, the HIPAA report can provide support to demonstrate that everything has been done to secure the data.<\/p>\n<p><a href=\"https:\/\/www.hhs.gov\/hipaa\/index.html\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"6\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8886\" aria-expanded=\"false\">SOx<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8886\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"6\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8886\" tabindex=\"0\" hidden=\"hidden\"><h3><img decoding=\"async\" class=\"alignnone size-full wp-image-27012\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-sox.png\" alt=\"logo SOX\" width=\"150\" height=\"\" \/><\/h3>\n<p><\/p>\n<h3>De Sarbanes-Oxley law is designed to prevent fraud<\/h3>\n<p><\/p>\n<p class=\"bodytext\">The SOx standard was derived from the bills proposed by Senator Paul Sarbanes and Senator Michael Oxley. Initially there was little support for the proposals, but due to the many scandals in 2002 (Enron, Worldcom, AOL, etc) they were passed in modified form. The purpose of the law is to prevent fraud. Unfortunately, the human factor remains too decisive to completely prevent fraud.<\/p>\n<h3>Threat of imprisonment and fines<\/h3>\n<p>A special feature of the legislation is the threat of prison sentences and fines for management if they fail to comply with corporate governance requirements. Non-U.S. companies must also comply with SOx legislation if they are listed on a U.S. stock exchange.<\/p>\n<p>The Sarbanes-Oxley Act (SOx) is primarily aimed at large companies that develop and use their own software. Previously, these companies also did internal controls, but the SOx legislation formalizes this to a great extent. A special place in it all is occupied by IT. If the software written by the company produces the figures from which the auditors get their data, then the auditors will certainly question the creation of this software. In many cases, the company will have to demonstrate that the software was managed properly.<\/p>\n<h3>Het Trust Guard SOx report provides insight into IT vulnerabilities<\/h3>\n<p><\/p>\n<p class=\"bodytext\">Here, Trust Guard can contribute by providing a report that provides insight regarding IT vulnerabilities (internal and external).<\/p>\n<p><a href=\"https:\/\/pcaobus.org\/\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-tab-title elementor-tab-mobile-title\" aria-selected=\"false\" data-tab=\"7\" role=\"tab\" tabindex=\"-1\" aria-controls=\"elementor-tab-content-8887\" aria-expanded=\"false\">NIS2<\/div>\n\t\t\t\t\t<div id=\"elementor-tab-content-8887\" class=\"elementor-tab-content elementor-clearfix\" data-tab=\"7\" role=\"tabpanel\" aria-labelledby=\"elementor-tab-title-8887\" tabindex=\"0\" hidden=\"hidden\"><p><img decoding=\"async\" class=\"alignnone size-full wp-image-32304\" src=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2024\/07\/logo-nis2.png\" alt=\"logo-nis2\" width=\"150\" height=\"\" \/><br \/>In the era of constant digitization, society is undergoing various influences that are straining the security of society and the economy. These include the COVID-19 pandemic, the Ukraine war, the increasing impacts of climate change, and an exponential growth of cyber attacks, such as phishing, malware and ransomware. These developments have led to a changing landscape in which European member states recognize the need to strengthen their digital and economic resilience.<\/p>\n<h3>What is the NIS2 Directive?<\/h3>\n<p>In 2016, the European Union introduced the Directive on Security of Network and Information Systems (NIS Directive). This first legislation aimed to increase cybersecurity and focused on essential service providers, including water, energy and telecom companies, the transportation sector, healthcare and finance. In response to the ongoing digital evolution and broader impact on various sectors, the NIS2 Directive was later launched as an extension of this initial legislation.<\/p>\n<h3>Important aspects of the NIS2 Directive<\/h3>\n<p>The NIS2 Directive includes several key elements:<\/p>\n<ul>\n<li><strong>Chain security and supplier relationships<\/strong><br \/>\nCompanies are now required to address security risks in their supply chains and supplier relationships.<\/li>\n<li><strong>Incident reporting and penalties<\/strong><br \/>\nThere is a stricter obligation for companies to report incidents, with strengthened sanctions for non-compliance.<\/li>\n<li><strong>Classification of organisations<\/strong><br \/>\nNIS2 no longer distinguishes between different services, but classifies organisations according to their importance, into essential and major categories.<\/li>\n<li><strong>Strengthened security requirements<\/strong><br \/>\nThe directive tightens security requirements for companies, with an emphasis on risk management and implementation of critical cybersecurity measures.<\/li>\n<li><strong>Expansion to more sectors<\/strong><br \/>\nThe new directive covers a wider range of sectors, meaning medium-sized and large companies in certain sectors are now required to implement specific security measures.<\/li>\n<li><strong>Board attention and accountability<\/strong><br \/>\nThe NIS2 directive calls for greater attention to governing bodies of companies covered by the directive, where responsibility can be assigned in case of incidents.<\/li>\n<li><strong>Stricter supervision and cooperation<\/strong><br \/>\nNational authorities are given more oversight measures, and enhanced cooperation between member states is sought to ensure digital security.<\/li>\n<\/ul>\n<p><\/p>\n<h3>Should your company comply with the NIS2 directive?<\/h3>\n<p>It is crucial to determine whether your company is considered an essential or important service provider. Essential services are vital to the functioning of society, while important services have a significant impact on users or other businesses. If this is the case, there are specific obligations that must be met.<\/p>\n<h3>Obligations under the directive<\/h3>\n<p><\/p>\n<ul>\n<li>Implement appropriate technical and organisational measures to reduce the risk of cyber incidents.<\/li>\n<li>Report serious cyber incidents to competent authorities within 24 hours.<\/li>\n<li>Cooperate with audits, inspections and controls by competent authorities.<\/li>\n<\/ul>\n<p>Non-compliance can result in significant fines, up to 10% of annual turnover, with a maximum of EUR 20 million.<\/p>\n<h3>Deadline for compliance<\/h3>\n<p>Although no final end date has been set yet, there is currently talk of the end of 2024 as a possible deadline for organisations to comply with the requirements of the NIS2 directive. It is very important to keep abreast of any specific deadlines set by the government.<\/p>\n<p><a href=\"https:\/\/nis2directive.eu\/\" target=\"_blank\" rel=\"noopener\">More info<\/a><\/p>\n<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-0e79a09 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"0e79a09\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-b127a54\" data-id=\"b127a54\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-9f665e1 elementor-widget elementor-widget-spacer\" data-id=\"9f665e1\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Standards See at a glance if you meet your own industry&#8217;s security standards. Read more Reports in different standards Reports according to various industry standards are available in Trust Guard&#8217;s dashboard. These include PCS DSS, GDPR, ISO27001, OWASP, HIPAA,\u00a0 SOx and NIS2. This allows you to see at a glance whether you meet the requirements <a href=\"https:\/\/www.trustguard.eu\/en\/solution\/standards\/\" class=\"more-link\">&#8230;<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"parent":19179,"menu_order":40,"comment_status":"closed","ping_status":"closed","template":"elementor_header_footer","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"class_list":["post-27808","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Standards - Trust Guard<\/title>\n<meta name=\"description\" content=\"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.trustguard.eu\/en\/solution\/standards\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Standards - Trust Guard\" \/>\n<meta property=\"og:description\" content=\"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.trustguard.eu\/en\/solution\/standards\/\" \/>\n<meta property=\"og:site_name\" content=\"Trust Guard\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-02T09:54:02+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png\" \/>\n\t<meta property=\"og:image:width\" content=\"253\" \/>\n\t<meta property=\"og:image:height\" content=\"83\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/\",\"url\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/\",\"name\":\"Standards - Trust Guard\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/logo-pci.png\",\"datePublished\":\"2023-10-31T14:57:41+00:00\",\"dateModified\":\"2025-06-02T09:54:02+00:00\",\"description\":\"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/logo-pci.png\",\"contentUrl\":\"https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/logo-pci.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/solution\\\/standards\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Solution\",\"item\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/oplossing\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Standards\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/\",\"name\":\"Trust Guard\",\"description\":\"Websitebeveiliging\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#organization\",\"name\":\"Trust Guard\",\"url\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/TG_logo_1-line.png\",\"contentUrl\":\"https:\\\/\\\/www.trustguard.eu\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/TG_logo_1-line.png\",\"width\":792,\"height\":613,\"caption\":\"Trust Guard\"},\"image\":{\"@id\":\"https:\\\/\\\/www.trustguard.eu\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/nl.linkedin.com\\\/company\\\/paybylink-com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Standards - Trust Guard","description":"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/","og_locale":"en_US","og_type":"article","og_title":"Standards - Trust Guard","og_description":"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.","og_url":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/","og_site_name":"Trust Guard","article_modified_time":"2025-06-02T09:54:02+00:00","og_image":[{"width":253,"height":83,"url":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/","url":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/","name":"Standards - Trust Guard","isPartOf":{"@id":"https:\/\/www.trustguard.eu\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/#primaryimage"},"image":{"@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/#primaryimage"},"thumbnailUrl":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png","datePublished":"2023-10-31T14:57:41+00:00","dateModified":"2025-06-02T09:54:02+00:00","description":"Website security standards vary by industry. Various industry reports are available in the Trust Guard dashboard.","breadcrumb":{"@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.trustguard.eu\/en\/solution\/standards\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/#primaryimage","url":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png","contentUrl":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2023\/10\/logo-pci.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.trustguard.eu\/en\/solution\/standards\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.trustguard.eu\/en\/"},{"@type":"ListItem","position":2,"name":"Solution","item":"https:\/\/www.trustguard.eu\/en\/oplossing\/"},{"@type":"ListItem","position":3,"name":"Standards"}]},{"@type":"WebSite","@id":"https:\/\/www.trustguard.eu\/en\/#website","url":"https:\/\/www.trustguard.eu\/en\/","name":"Trust Guard","description":"Websitebeveiliging","publisher":{"@id":"https:\/\/www.trustguard.eu\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.trustguard.eu\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.trustguard.eu\/en\/#organization","name":"Trust Guard","url":"https:\/\/www.trustguard.eu\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.trustguard.eu\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2024\/12\/TG_logo_1-line.png","contentUrl":"https:\/\/www.trustguard.eu\/wp-content\/uploads\/2024\/12\/TG_logo_1-line.png","width":792,"height":613,"caption":"Trust Guard"},"image":{"@id":"https:\/\/www.trustguard.eu\/en\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/nl.linkedin.com\/company\/paybylink-com"]}]}},"_links":{"self":[{"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/pages\/27808","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/comments?post=27808"}],"version-history":[{"count":0,"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/pages\/27808\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/pages\/19179"}],"wp:attachment":[{"href":"https:\/\/www.trustguard.eu\/en\/wp-json\/wp\/v2\/media?parent=27808"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}