RegScale Announces Support for PCI DSS 3.2.1

August 3, 2022 | By J. Travis Howerton

The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance payment card account data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect account data. While specifically designed to focus on environments with payment card account data, PCI DSS can also be used to protect against threats and secure other elements in the payment ecosystem.

At RegScale, we give financial services organizations easy and free tools to get started with building a fully compliant PCI DSS program with support for tracking policies, related assessments, evidence collection, issues management/performance improvement, and other related workflows. As of August 3, 2022, RegScale has announced that we officially support the PCI DSS as a catalog within our platform with automated tools/wizards for building compliant assessment programs. In addition, we have published multiple machine readable formats of PCI DSS including an Excel spreadsheet, raw JSON, and NIST OSCAL that are available upon request. These artifacts are freely available for others to reuse in their compliance automation programs using machine readable formats.

Schedule a free demo today to learn how RegScale can help you continuously meet your PCI DSS requirements. If you are ready to start automating your compliance processes for creating and managing PCI DSS requirements, this demo will also show how you can leverage RegScale to deliver continuous compliance. In addition to offering free tools, we have experienced compliance professionals who can assist you in creating robust PCI DSS compliance artifacts that will help you pass audits and reduce your risk with ease. With RegScale, our customers get software with a service to provide a concierge like experience for reducing risk related to their financial services systems.

Ready to get started?

Choose the path that is right for you! 

Skip the line

My organization doesn’t have GRC tools yet and I am ready to start automating my compliance with continuous monitoring pipelines now. 


My organization already has legacy compliance software, but I want to automate many of the manual processes that feed it.