{"id":3457,"date":"2022-11-11T07:30:50","date_gmt":"2022-11-11T06:30:50","guid":{"rendered":"http:\/\/10.24.225.70\/?p=3457"},"modified":"2026-03-24T18:38:04","modified_gmt":"2026-03-24T17:38:04","slug":"the-scoping-exercise-the-foundation-for-pci-dss-compliance","status":"publish","type":"post","link":"https:\/\/complior.se\/en\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/","title":{"rendered":"The scoping exercise: the foundation for PCI DSS compliance"},"content":{"rendered":"
\n
\n
<\/svg><\/span>Tillbaka till resurser<\/span><\/a><\/div>\n\n\n\nBlog<\/span>\n\n\n\n

The Scoping Exercise: The Foundation for PCI DSS Compliance<\/h1>\n\n\n\n
\r\n\t\r\n\t\t<\/rect>\r\n\t\t<\/line>\r\n\t\t<\/line>\r\n\t\t<\/line>\r\n\t<\/svg>\r\n\t\r\n\t\tNov 11, 2022\t<\/span>\r\n<\/div>\n\n\n

<\/svg><\/span>8 min <\/span><\/h1><\/div>\n<\/div>\n\n\n\n
\"Woman<\/figure>\n<\/div><\/div>\n\n\n\n
\n
\n

PCI DSS Scope Reduction \u2013 \u201cRequirement Zero\u201d<\/h2>\n\n\n\n

N\u00e4r du startar ett PCI DSS-complianceprojekt \u00e4r scoping det som vissa QSAs kallar f\u00f6r \u201crequirement zero\u201d. Ju mer komplexa processer och system du har f\u00f6r att lagra, \u00f6verf\u00f6ra eller behandla kortdata (CHD), desto sv\u00e5rare blir det att uppn\u00e5 och uppr\u00e4tth\u00e5lla compliance.<\/p>\n\n\n\n

Att minska PCI DSS-scope \u00e4r d\u00e4rf\u00f6r ett avg\u00f6rande m\u00e5l f\u00f6r alla organisationer, eftersom det i slut\u00e4ndan leder till (ibland dramatiskt) l\u00e4gre totala kostnader f\u00f6r compliance. Om ett system tas ur scope slipper du b\u00e5de kostnad och arbete kopplat till \u00e5terkommande aktiviteter (t.ex. patchning, s\u00e5rbarhetsskanningar) samt \u00e5rliga revisioner.<\/p>\n\n\n\n

Ytterligare f\u00f6rdelar inkluderar enklare underh\u00e5ll av s\u00e4kerhetskontroller och minskad risk genom en mindre attackyta.<\/p>\n\n\n\n

Scope-reduktion \u00e4r d\u00e4rmed det viktigaste verktyget f\u00f6r att begr\u00e4nsa omfattningen av compliance-arbetet. Det rekommenderas starkt att organisationer implementerar en strategi f\u00f6r detta redan i b\u00f6rjan av projektet, eftersom scoping definierar gr\u00e4nsen d\u00e4r alla krav ska uppfyllas.<\/p>\n\n\n\n

Samtidigt kan scope-reduktion kr\u00e4va f\u00f6r\u00e4ndringar i b\u00e5de n\u00e4tverksarkitektur och aff\u00e4rsprocesser, vilket g\u00f6r det till en utmaning att genomf\u00f6ra utan att p\u00e5verka tj\u00e4nster eller skapa h\u00f6ga kostnader.<\/p>\n<\/div>\n\n\n\n

\n

Viktiga begrepp<\/h2>\n\n\n\n
\n

Out-of-scope<\/h3>\n\n\n\n

Ett system (eller en systemkomponent) anses vara out-of-scope endast n\u00e4r det \u00e4r helt isolerat fr\u00e5n CDE (Card Data Environment). Det inneb\u00e4r att \u00e4ven om systemet komprometteras ska det inte kunna p\u00e5verka s\u00e4kerheten i CDE.<\/p>\n<\/div>\n\n\n\n

\n

Connected systems<\/h3>\n\n\n\n

CDE och alla anslutna system r\u00e4knas som in-scope. Ett anslutet system \u00e4r varje komponent som kommunicerar med n\u00e5gon del av CDE, oavsett syfte, protokoll eller vilken enhet som initierar kommunikationen.<\/p>\n\n\n\n

Ett system anses vara isolerat (och d\u00e4rmed out-of-scope) endast om det:<\/p>\n\n\n\n

    \n
  • Inte kan kommunicera med CDE<\/li>\n\n\n\n
  • Har verifierats att det inte kan kompromettera CDE:s s\u00e4kerhet<\/li>\n<\/ul>\n<\/div>\n<\/div>\n\n\n\n
    \n

    Hur man verifierar att ett system \u00e4r out-of-scope<\/h2>\n\n\n\n
    \n

    Penetrationstestning och segmenteringskontroller<\/h3>\n\n\n\n

    Implementera en metodik f\u00f6r penetrationstestning och genomf\u00f6ra tester som bekr\u00e4ftar att segmentering fungerar korrekt.<\/p>\n\n\n\n

    PCI Council anger att segmenteringskontroller ska inkludera:<\/p>\n\n\n\n

      \n
    • Host discovery<\/li>\n\n\n\n
    • Port scanning<\/li>\n\n\n\n
    • Verifiering att isolerade n\u00e4t inte har \u00e5tkomst till CDE<\/li>\n<\/ul>\n<\/div>\n\n\n\n
      \n

      Riskbed\u00f6mning av exkluderade system<\/h3>\n\n\n\n

      PCI DSS kr\u00e4ver \u00e4ven att organisationer:<\/p>\n\n\n\n

        \n
      • Genomf\u00f6r riskbed\u00f6mning av b\u00e5de anslutna och exkluderade system<\/li>\n\n\n\n
      • Verifierar att exkluderade system inte kan p\u00e5verka CDE<\/li>\n<\/ul>\n\n\n\n

        Om ett exkluderat system kan p\u00e5verka CDE vid kompromettering m\u00e5ste det inkluderas i scope.<\/p>\n<\/div>\n<\/div>\n\n\n\n

        \n

        Metoder f\u00f6r att minska PCI DSS-scope<\/h2>\n\n\n\n
        \n

        Remove (Eliminera)<\/h3>\n\n\n\n
          \n
        • Skapa en uppdaterad CHD-fl\u00f6desdiagram<\/li>\n\n\n\n
        • Konsolidera system som hanterar CHD<\/li>\n\n\n\n
        • Eliminera redundant lagring och applikationer<\/li>\n<\/ul>\n<\/div>\n\n\n\n
          \n

          Truncate \/ Mask (Trunkering och maskning)<\/h3>\n\n\n\n
            \n
          • Anv\u00e4nd endast delar av PAN d\u00e4r m\u00f6jligt<\/li>\n\n\n\n
          • Minskad datam\u00e4ngd minskar risk och kan ta system ur scope<\/li>\n<\/ul>\n<\/div>\n\n\n\n
            \n

            Hashing<\/h3>\n\n\n\n
              \n
            • Ers\u00e4tt PAN med hashv\u00e4rden<\/li>\n\n\n\n
            • Anv\u00e4nd salt (random input) f\u00f6r att f\u00f6rhindra j\u00e4mf\u00f6relser mot f\u00f6rber\u00e4knade tabeller<\/li>\n<\/ul>\n<\/div>\n\n\n\n
              \n

              Tokenization<\/h3>\n\n\n\n

              Tokenization ers\u00e4tter k\u00e4nslig data med tokens. F\u00f6rdelarna \u00e4r:<\/p>\n\n\n\n

                \n
              • Mindre beroende av kryptering och nyckelhantering<\/li>\n\n\n\n
              • Skydd mot attacker som extraherar data fr\u00e5n minne<\/li>\n\n\n\n
              • M\u00f6jligg\u00f6r analys och databehandling via tokens<\/li>\n<\/ul>\n\n\n\n

                Nya l\u00f6sningar inkluderar:<\/p>\n\n\n\n

                  \n
                • Vault-less tokenization<\/li>\n\n\n\n
                • In-memory tokenization<\/li>\n\n\n\n
                • Tokenization as a Service (TaaS)<\/li>\n<\/ul>\n<\/div>\n<\/div>\n\n\n\n
                  \n

                  Point-to-Point Encryption (P2PE)<\/h2>\n\n\n\n
                  \n
                    \n
                  • Krypterar data fr\u00e5n insamlingspunkt till s\u00e4ker endpoint<\/li>\n\n\n\n
                  • Rekommenderad metod f\u00f6r handlare<\/li>\n\n\n\n
                  • Begr\u00e4nsat antal validerade l\u00f6sningar (men v\u00e4xande)<\/li>\n<\/ul>\n<\/div>\n<\/div>\n<\/div><\/div>","protected":false},"excerpt":{"rendered":"

                    The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance<\/p>","protected":false},"author":2,"featured_media":73572,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"blogg","format":"standard","meta":{"_editorskit_title_hidden":false,"_editorskit_reading_time":4,"_editorskit_is_block_options_detached":false,"_editorskit_block_options_position":"{}","_eb_attr":"","inline_featured_image":false,"_uag_custom_page_level_css":"","wpm_timeformat":"","_wpm_styles":"","footnotes":""},"categories":[118],"tags":[117,127,128],"class_list":["post-3457","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blogg","tag-blog","tag-pci","tag-pci-dss"],"yoast_head":"\nThe scoping exercise: the foundation for PCI DSS compliance - Complior<\/title>\n<meta name=\"description\" content=\"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/complior.se\/en\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The scoping exercise: the foundation for PCI DSS compliance - Complior\" \/>\n<meta property=\"og:description\" content=\"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance\" \/>\n<meta property=\"og:url\" content=\"https:\/\/complior.se\/en\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/\" \/>\n<meta property=\"og:site_name\" content=\"Complior\" \/>\n<meta property=\"article:published_time\" content=\"2022-11-11T06:30:50+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-03-24T17:38:04+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1340\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kikki Bostrom\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kikki Bostrom\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/\"},\"author\":{\"name\":\"Kikki Bostrom\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/person\\\/841f8a57425589a6d7f13c201d345016\"},\"headline\":\"The scoping exercise: the foundation for PCI DSS compliance\",\"datePublished\":\"2022-11-11T06:30:50+00:00\",\"dateModified\":\"2026-03-24T17:38:04+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/\"},\"wordCount\":582,\"publisher\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/Foundation-02-scaled.png\",\"keywords\":[\"Blog\",\"PCI\",\"PCI DSS\"],\"articleSection\":[\"Blogg\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/\",\"url\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/\",\"name\":\"The scoping exercise: the foundation for PCI DSS compliance - Complior\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/Foundation-02-scaled.png\",\"datePublished\":\"2022-11-11T06:30:50+00:00\",\"dateModified\":\"2026-03-24T17:38:04+00:00\",\"description\":\"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#primaryimage\",\"url\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/Foundation-02-scaled.png\",\"contentUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/Foundation-02-scaled.png\",\"width\":2560,\"height\":1340,\"caption\":\"Woman putting a toy brick on top of another\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/complior.se\\\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/complior.se\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The scoping exercise: the foundation for PCI DSS compliance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/complior.se\\\/#website\",\"url\":\"https:\\\/\\\/complior.se\\\/\",\"name\":\"Complior\",\"description\":\"Security beyond compliance\",\"publisher\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/complior.se\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\",\"name\":\"Complior\",\"url\":\"https:\\\/\\\/complior.se\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Complior_logo_dark-scaled.png\",\"contentUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Complior_logo_dark-scaled.png\",\"width\":2560,\"height\":960,\"caption\":\"Complior\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/person\\\/841f8a57425589a6d7f13c201d345016\",\"name\":\"Kikki Bostrom\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"caption\":\"Kikki Bostrom\"},\"url\":\"https:\\\/\\\/complior.se\\\/en\\\/author\\\/kikki\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The scoping exercise: the foundation for PCI DSS compliance - Complior","description":"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/complior.se\/en\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/","og_locale":"en_GB","og_type":"article","og_title":"The scoping exercise: the foundation for PCI DSS compliance - Complior","og_description":"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance","og_url":"https:\/\/complior.se\/en\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/","og_site_name":"Complior","article_published_time":"2022-11-11T06:30:50+00:00","article_modified_time":"2026-03-24T17:38:04+00:00","og_image":[{"width":2560,"height":1340,"url":"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png","type":"image\/png"}],"author":"Kikki Bostrom","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kikki Bostrom","Estimated reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#article","isPartOf":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/"},"author":{"name":"Kikki Bostrom","@id":"https:\/\/complior.se\/#\/schema\/person\/841f8a57425589a6d7f13c201d345016"},"headline":"The scoping exercise: the foundation for PCI DSS compliance","datePublished":"2022-11-11T06:30:50+00:00","dateModified":"2026-03-24T17:38:04+00:00","mainEntityOfPage":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/"},"wordCount":582,"publisher":{"@id":"https:\/\/complior.se\/#organization"},"image":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png","keywords":["Blog","PCI","PCI DSS"],"articleSection":["Blogg"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/","url":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/","name":"The scoping exercise: the foundation for PCI DSS compliance - Complior","isPartOf":{"@id":"https:\/\/complior.se\/#website"},"primaryImageOfPage":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#primaryimage"},"image":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png","datePublished":"2022-11-11T06:30:50+00:00","dateModified":"2026-03-24T17:38:04+00:00","description":"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance","breadcrumb":{"@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#primaryimage","url":"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png","contentUrl":"https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png","width":2560,"height":1340,"caption":"Woman putting a toy brick on top of another"},{"@type":"BreadcrumbList","@id":"https:\/\/complior.se\/the-scoping-exercise-the-foundation-for-pci-dss-compliance\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/complior.se\/"},{"@type":"ListItem","position":2,"name":"The scoping exercise: the foundation for PCI DSS compliance"}]},{"@type":"WebSite","@id":"https:\/\/complior.se\/#website","url":"https:\/\/complior.se\/","name":"Complior","description":"Security beyond compliance","publisher":{"@id":"https:\/\/complior.se\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/complior.se\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/complior.se\/#organization","name":"Complior","url":"https:\/\/complior.se\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/complior.se\/#\/schema\/logo\/image\/","url":"https:\/\/complior.se\/wp-content\/uploads\/2025\/06\/Complior_logo_dark-scaled.png","contentUrl":"https:\/\/complior.se\/wp-content\/uploads\/2025\/06\/Complior_logo_dark-scaled.png","width":2560,"height":960,"caption":"Complior"},"image":{"@id":"https:\/\/complior.se\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/complior.se\/#\/schema\/person\/841f8a57425589a6d7f13c201d345016","name":"Kikki Bostrom","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","caption":"Kikki Bostrom"},"url":"https:\/\/complior.se\/en\/author\/kikki\/"}]}},"uagb_featured_image_src":{"full":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-scaled.png",2560,1340,false],"thumbnail":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-150x150.png",150,150,true],"medium":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-300x157.png",300,157,true],"medium_large":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-768x402.png",768,402,true],"large":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-1024x536.png",1024,536,true],"1536x1536":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-1536x804.png",1536,804,true],"2048x2048":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-2048x1072.png",2048,1072,true],"trp-custom-language-flag":["https:\/\/complior.se\/wp-content\/uploads\/2022\/12\/Foundation-02-18x9.png",18,9,true]},"uagb_author_info":{"display_name":"Kikki Bostrom","author_link":"https:\/\/complior.se\/en\/author\/kikki\/"},"uagb_comment_info":0,"uagb_excerpt":"The more complex your processes and systems for storing, transmitting or processing cardholder data are, the harder to maintain compliance","_links":{"self":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/3457","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/comments?post=3457"}],"version-history":[{"count":5,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/3457\/revisions"}],"predecessor-version":[{"id":80090,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/3457\/revisions\/80090"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/media\/73572"}],"wp:attachment":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/media?parent=3457"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/categories?post=3457"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/tags?post=3457"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}