Passport 2023 PCI Compliance

Trust & Security Center

Get access to this Trust & Security Center
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Overview

Keeping data secure, confidential, and readily accessible are our greatest priorities.

Passport’s cybersecurity program is based on the concept of Defense in Depth: securing our organization and your data at every layer.

Our cybersecurity program aligns with the NIST Cybersecurity Framework, and Passport is SOC 2 compliant and PCI DSS Level 1 merchant and service provider certified.

While no system can guard against every potential threat, Passport’s defensive line is monitored 24/7, 365 days a year by skilled, highly trained professionals.

Passport’s cybersecurity team, led by our Chief Information Security Officer (CISO), is responsible for the implementation and management of our cybersecurity program. The CISO is supported by the members of Passport’s engineering and product teams and is enabled by our Executive Leadership team.

The focus of Passport’s cybersecurity program is to prevent unauthorized access to customer data. To this end, our team of dedicated cybersecurity practitioners, working in partnership with peers across the company, take specific steps to identify and mitigate risks, implement best practices, and continuously develop ways to improve.

Compliance

PCI DSS Logo
PCI DSS
SOC 1 Logo
SOC 1
SOC 2 Logo
SOC 2
Get access to this Trust & Security Center
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Passport is reviewed and trusted by

ParkChicagoParkChicago
City of PasadenaCity of Pasadena
City of AustinCity of Austin
City of AshevilleCity of Asheville
LAZ ParkingLAZ Parking
SP+SP+
University of North DakotaUniversity of North Dakota
City of BozemanCity of Bozeman
ParkwellParkwell

Documents

PCI DSS
SOC 2
HECVAT Full
SOC 1

Risk Profile

Data Access LevelRestricted
Impact LevelModerate
Recovery Time Objective24 hours
See more

Product Security

Audit Logging
Data Security
Integrations
See more

Self-Assessments

HECVAT Full

Data Security

Access Monitoring
Backups Enabled
Data Erasure
See more

App Security

Responsible Disclosure
Bot Detection
Secure Development Training
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
Anti-DDoS
BC/DR
See more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management

Network Security

Firewall
IDS/IPS
Virtual Private Cloud

Corporate Security

Email Protection
Employee Training
HR Security
See more

Security Grades

Qualys SSL Labs
passportinc.com
A
ppprk.com
A
passportparking.com
A

Knowledge Base

  • Do you control the transfer of information to external parties through authentication and encryption?
  • Do you currently use encryption in your database(s)?
  • Does your product process protected health information (PHI) or any data covered by the Health Insurance Portability and Accountability Act?
See more

Trust Center Updates

If you think you may have discovered a vulnerability, please send us a note.

Powered BySafeBase Logo