We’re Canada’s Largest Dedicated
PCI Compliance Company
If you accept credit cards as a form of payment, then you need to care about compliance. PCI compliance doesn’t have to be confusing, time consuming and costly – that is, when you have the right company on your side. Control Gap helps you get compliant and stay compliant quickly and effectively!
Trusted by fortune 500 companies, Control Gap is the largest PCI Compliance firm in Canada. We provide customized solutions that you can depend on.
Quick and Easy
Our certified experts make getting compliant easy, leaving you more time to get back to what you do best – running your business.
There are many ways to get compliant, we focus on the compliance solution that makes the most sense for your organization.
Effective and Affordable
We use multiple approaches, technologies and assessment tools; where there’s a simpler, more cost-effective way to do something, our clients are the first to know.
Tired of being confused by compliance?
Contact us today and learn more about how we can help you
Get Compliant. Stay Compliant.
Or Call: 1 (866) 644-8808
What is PCI Pilot™?
PCI Pilot™ is a web-based application that’s FREE to start! The app focuses on helping smaller and medium-sized businesses simplify and speed up the PCI compliance process by automating the SAQ (Self-Assessment Questionnaire) via an online tool.
Learn More About PCI Pilot™
Why Control Gap?
- We save you time and money
- We help you avoid fines and potential punitive action
- We make compliance understandable
- We are current with all legislation and standards so you don’t have to be
- We are your go-to expert for all your compliance questions and issues
Credentials and Affiliations
- Certified Ethical Hackers (CEH)
- Checkpoint Certified System Engineers (CCSE)
- Certified Technical Trainers (CTT)
- Certified Information Systems Security Professionals (CISSP)
- Certified Information Systems Auditors (CISA)
- ISO/IEC 27001 Lead Auditor
- Qualified Security Assessor Company (QSAC)
- Payment Application Qualified Security Assessor (PA-QSA)
- Point to Point Encryption Solutions (P2PE QSA)
- Point to Point Encryption Applications (P2PE PA-QSA)
Read More Customer Experiences
Control Gap helped our staff to better understand the audit process & its objectives. We look forward to engaging Control Gap in the future.
(Vice President Technical Services, AJB Software)
We were impressed with Control Gap’s flexibility. They worked around us and they got the job done.
(Founder & CTO, Hosted PCI)
They patiently guided us through the entire audit process and we found them easy to work with, vendor neutral & focused on helping.
(Manager of Information Security & Compliance, Threshold Financial Technologies)
This Week’s [in]Security – Issue 37
December 11 2017
Welcome to This Week’s [in]Security. We’ve collected and grouped together a selection of this week’s news, opinions, and research. Quickly skim these annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful. PCI Compliance and Payments Having
Understanding “Connected-to” – Is The Internet In Scope For PCI DSS?
December 7 2017
PCI DSS is all about scope. Getting scope right or wrong is perhaps the single most critical factor determining the ultimate success or failure of an organization’s compliance. While determining scope is the responsibility of the assessed, validating scope is the responsibility of the assessor. What that means is that an organization can’t arbitrarily choose