SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Story image
Jscrambler secures PCI DSS v4.0 compliance boosting client-side protection
Wed, 20th Dec 2023

Jscrambler, a pioneering platform for client-side protection and compliance, recently announced achieving PCI DSS v4.0 compliance. The compliance was confirmed by an external assessment carried out by global cybersecurity and compliance experts, Advantio.

This significant achievement re-emphasises Jscrambler's commitment to client-side protection and furnishing secure environments as a trusted PCI service provider.

Originated in Porto, Portugal, Jscrambler provides an agent on customer payment pages that secured its compliance with the PCI DSS v4.0 framework.

Although the firm does not store, process or transmit cardholder data, this accomplishment asserts the platform's high security standards and its dedication to protecting customer data as well as insuring transaction security.

The Payment Card Industry Data Security Standard (PCI DSS) is a global standard defining requirements for safeguarding cardholder data. Version 4.0 represents state-of-the-art cybersecurity, and it demonstrates an organisation’s commitment to data protection.

The obligations enlisted in the PCI DSS v4.0 mandate that firms handling or impacting the security of payment data implement various controls to protect such data.

CEO and Co-founder of Jscrambler, Rui Ribeiro, emphasised the importance of secure environments for financial transactions and meeting compliance mandates.

"As a service provider to merchants who have PCI DSS obligations, we are focused on creating a secure environment for our customers' financial transactions and their business. This means not only understanding and helping them meet compliance mandates but also having full confidence in our ability to meet the requirements as well," explained Riberio.

He continued, highlighting collective responsibility within the payments ecosystem. "Whether you are a solution vendor, service provider, PSP, or merchant, it is imperative that you take the appropriate measures to validate the security of, and mitigate any risks associated with, online payments and payment pages."

Jscrambler's Co-founder and CTO, Pedro Fortuna, is an active member of the PCI SSC Board of Advisors and a Principal Participating Organisation. The company’s compliance with PCI DSS v4.0 allows clients to utilise Jscrambler's cutting-edge Client-Side Protection Platform.

This platform not only defends cardholder data from skimming attacks but also addresses the new PCI-DSS v4.0 requirements 6.4.3 and 11.6.1 concerning JavaScript code security.

Speaking about Jscrambler's progress, Manuel Fernandez, Regional Sales Director, Advantio, stated, "Jscrambler offers a robust security solution, setting a high standard and expecting nothing less."

"We believe that merchants and service providers utilising Jscrambler will find it effortless to maintain the integrity of their websites without compromising functionality. Compliance with PCI DSS version 4.0 is imperative for ensuring a secure environment."

The firm's compliance achievement comes well ahead of the April 2025 deadline for the new standard and demonstrates its ongoing commitment to data protection and transaction security. It serves to inspire confidence among existing and prospective clients in the security of their financial transactions and sensitive data.