PCI Compliance
Overview
Maintaining security around transaction information relating to accepting, storing, and processing credit card information is done alongside a set of standards called the Payment Card Industry Data Security Standard (PCI DSS), it relates to protecting card data and other sensitive authentication data with processing, storage, and transmission services.
See our Security page to find out more about PCI or the official PCI DSS standards page. At Instaclustr we offer clusters in compliance with PCI standards, the option for which can be selected during cluster creation.
Supported Services
Base Application:
Providers
- Amazon Web Services (AWS)
- Google Cloud Platform (GCP)
PCI compliance compatibility with Optional services.
| Optional services | Compatibility |
| Private Network Cluster | Compatible |
| PrivateLink Note: Kafka and OpenSearch (not including OpenSearch Dashboards) Only |
Compatible |
| Continuous Backup Note: Cassandra Only |
Compatible |
| Debezium Note: Cassandra Only |
Compatible |
| Advanced Visibility Note: Cadence Only |
Compatible |
| Cadence Archival Note: Cadence Only |
Compatible |
| Apache Spark | Not Compatible |
| Cassandra Lucene Index Note: Cassandra Only |
Not Compatible |
| Kafka Schema Registry Note: Kafka Only |
Not Compatible |
| Kafka REST Proxy Note: Kafka Only |
Not Compatible |
| Karapace Schema Registry Note: Kafka Only |
Compatible |
| Karapace REST Proxy Note: Kafka Only |
Not Compatible |
| Kafka Connect Note: It is an independent service which can be associated with a Kafka cluster. |
Not Compatible |
| Redis Mirroring Note: Redis Only |
Not Compatible |
| Valkey Mirroring Note: Valkey Only |
Not Compatible |
| Multi-region Cadence Note: Cadence Only |
Not Compatible |
| Cadence HTTP API Note: Cadence Only |
Not Compatible |
| OpenSearch Dashboards | Not Compatible |
Requirements
In order for clusters to be compliant with the PCI standards, there are several criteria that must be satisfied, outlined below are these requirements.
- Must have PCI-compliant account security settings enabled
- Running Apache Cassandra, Apache Kafka, OpenSearch, Redis, Valkey, or PostgreSQL as the primary bundle
- Running on GCP or AWS
- PCI add-on enabled
- Only compatible options are enabled as per the compatibility table above
For a full list of customer requirements for running a PCI-managed service please see this document:
Download PCI Responsibilities Document
For any additional assistance or information on our PCI offering, please contact [email protected].