12.5.2
Controls detail rendered from /controls/ctrl_60fdfc777c35bf6d.
Overview
| ID | ctrl_60fdfc777c35bf6d |
| Collection | Controls |
| Provider | Vanta Trust Center |
| Company | Xactus |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | ctrl_60fdfc777c35bf6d |
| providerId | vanta |
| organizationId | org_3a3e066a26c285b0 |
| trustCenterId | tc_29ce8358998021bd |
| name | 12.5.2 |
| groupName | Infrastructure security |
| status | documented |
| maturity | - |
| description | PCI DSS scope is documented and confirmed by the entity at least once every 12 months and upon significant change to the in-scope environment. At a minimum, the scoping validation includes: - Identifying all data flows for the various payment stages (for example, authorization, capture settlement, chargebacks, and refunds) and acceptance channels (for example, card-present, card-not-present, and e-commerce). - Updating all data-flow diagrams per Requirement 1.2.4. - Identifying all locations where account data is stored, processed, and transmitted, including but not limited to: 1) any locations outside of the currently defined CDE, 2) applications that process CHD, 3) transmissions between systems and networks, and 4) file backups. - Identifying all system components in the CDE, connected to the CDE, or that could impact security of the CDE. - Identifying all segmentation controls in use and the environment(s) from which the CDE is segmented, including justification for environments being out of scope. - Identifying all connections from third-party entities with access to the CDE. - Confirming that all identified data flows, account data, system components, segmentation controls, and connections from |
| source | {
"field": "graphql.fetchCustomizableControlsDataForExternalTrustCenter"
} |
| company | {
"id": "org_3a3e066a26c285b0",
"name": "Xactus",
"domains": [
"trust.xactus.com",
"xactus.com",
"www.xactus.com"
]
} |
| trust_center | {
"id": "tc_29ce8358998021bd",
"name": "Xactus",
"url": "https://trust.xactus.com",
"host": "trust.xactus.com"
} |
| provider | {
"id": "vanta",
"name": "Vanta Trust Center"
} |
| links | {
"self": "/v1/controls/ctrl_60fdfc777c35bf6d",
"company": "/v1/companies/org_3a3e066a26c285b0",
"trust_center": "/v1/trust-centers/tc_29ce8358998021bd",
"provider": "/v1/providers/vanta"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/controls/ctrl_60fdfc777c35bf6dJSON