We’re Canada’s Largest Dedicated
PCI Compliance Company
If you accept credit cards as a form of payment, then you need to care about compliance. PCI compliance doesn’t have to be confusing, time consuming and costly – that is, when you have the right company on your side. Control Gap helps you get compliant and stay compliant quickly and effectively!
Trusted by fortune 500 companies, Control Gap is the largest PCI Compliance firm in Canada. We provide customized solutions that you can depend on.
Quick and Easy
Our certified experts make getting compliant easy, leaving you more time to get back to what you do best – running your business.
There are many ways to get compliant, we focus on the compliance solution that makes the most sense for your organization.
Effective and Affordable
We use multiple approaches, technologies and assessment tools; where there’s a simpler, more cost-effective way to do something, our clients are the first to know.
Tired of being confused by compliance?
Contact us today and learn more about how we can help you
Get Compliant. Stay Compliant.
Or Call: 1 (866) 644-8808
What is PCI Pilot™?
PCI Pilot™ is a web-based application that’s FREE to start! The app focuses on helping smaller and medium-sized businesses simplify and speed up the PCI compliance process by automating the SAQ (Self-Assessment Questionnaire) via an online tool.
Learn More About PCI Pilot™
Why Control Gap?
- We save you time and money
- We help you avoid fines and potential punitive action
- We make compliance understandable
- We are current with all legislation and standards so you don’t have to be
- We are your go-to expert for all your compliance questions and issues
Credentials and Affiliations
- Certified Ethical Hackers (CEH)
- Checkpoint Certified System Engineers (CCSE)
- Certified Technical Trainers (CTT)
- Certified Information Systems Security Professionals (CISSP)
- Certified Information Systems Auditors (CISA)
- ISO/IEC 27001 Lead Auditor
- Qualified Security Assessor Company (QSAC)
- Payment Application Qualified Security Assessor (PA-QSA)
- Point to Point Encryption Solutions (P2PE QSA)
- Point to Point Encryption Applications (P2PE PA-QSA)
Read More Customer Experiences
Control Gap helped our staff to better understand the audit process & its objectives. We look forward to engaging Control Gap in the future.
(Vice President Technical Services, AJB Software)
We were impressed with Control Gap’s flexibility. They worked around us and they got the job done.
(Founder & CTO, Hosted PCI)
They patiently guided us through the entire audit process and we found them easy to work with, vendor neutral & focused on helping.
(Manager of Information Security & Compliance, Threshold Financial Technologies)
17 Predictions About the Next Version of PCI DSS
January 10 2018
PCI DSS v3.2 is due for an update this year – but what will that look like? In this article, we peer into our crystal ball to make some predictions … What Will The New DSS Bring? Q: The updated DSS will need a new version number, so will that be: 4.0, 3.3, or 3.2.1?
This Week’s [in]Security – Issue 56
April 23 2018
Welcome to This Week’s [in]Security. We’ve collected and grouped together a selection of this week’s news, opinions, and research. Quickly skim these annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful. PCI Compliance and Payments FAQ’s
3 Approaches to Penetration Testing for PCI DSS
April 11 2018
Understanding PCI DSS requirements in depth can often be confusing and frustrating. The requirements covering penetration testing, PCI DSS 11.3, are a case in point. This article will help those of you who are seeking compliance to know what is expected and to guide you in the right direction. Specifically, we will look at what