You run an e-commerce operation, so you’re no stranger to information security and data privacy requirements. You’ve taken all the right steps, including security measures, best practices and training, and you follow regulatory mandates like PCI DSS to the letter.
Yet despite your efforts, all it takes is one or two customers acting rashly to knock your compliance program off the rails.
Here’s a good example. An impatient customer wants a speedier refund. To help it along, they decide it’s a good idea to email their credit card data to your customer support center. There the incoming email is automatically stored in your Salesforce instance.
In the time it takes your customer to hit ‘Send’, you’ve got their personally identifiable information (PII) stored insecurely in your environment, visible to anyone with access. That exposes your company to compliance risks, audit problems, potential fines and other damaging regulatory actions.
For e-commerce companies and other organizations that regularly handle customers’ PII, GearsDataMask eliminates these risks. It achieves this by recognizing and automatically masking PII data. The solution covers debit and credit cards from all the major issuers, and other types of PII data, such as Social Security numbers.
GearsDataMask works by scanning Cases and related objects (Emails, Transcripts, Case Feed and Case Comments) looking for patterns in entries and data that match the patterns of PII items, or patterns defined by the customer. When it detects these items, GearsDataMask automatically obfuscates them, covering the data elements with X’s so that they are unreadable – and therefore, protected.
Based on Force.com and built for use with Salesforce Service Cloud©, GearsDataMask is an easy install from the AppExchange.