PCI Privacy Compliance and Legality in the United States
Common Use
RMail email encryption is commonly used within financial services industries and sectors that are processing financial transactions or are required to meet the same privacy needs. Additionally, RMail email encryption is used in the insurance, legal, human resources, health care, biotech, life sciences, clinical research, and other industries where businesses interact with clients and transmit sensitive, personal, financial, or health related information.
Watch full video of Ingo Wittig discuss RMail & RSign at Optimize!2020.
We started looking at RSign because we like the templates; we like being able to store everything. We keep everything in our agency management system so with RSign, we’re able to move things really pretty quickly.
Ingo Wittig
IT Manager, Durham & Bates Insurance
Legal Aspects
RMail® email encryption makes it easy to automate privacy for both senders and recipients, and for senders, prove compliance with Payment Card Industry Data Security Standard (PCI DSS) and other privacy requirements and regulations. Each RMail message returns the highest levels of court admissible, legally valid, timestamped email privacy compliance evidence in the form of a Registered Receipt™ authenticatable email record.
For financial privacy and security, RPost has established system settings for its encryption services for those who are required to be PCI compliant. Unique to RPost’s RMail email encryption service is an option for PCI complaint encryption. For compliance, these customers set the minimum level of TLS for PCI Compliance. They set the minimum level to, for example, TLS 1.2 such that if TLS 1.2 is not available, but a lesser TLS is (or no TLS), the message automatically reverts to RPost’s AES-256 Bit PDF encryption rather than have the message sent TLS 1.0 (or without encryption).
Laws Referenced
Payment Card Industry Data Security Standard (PCI DSS). The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit cards. The PCI Standard is required by credit card brands but administered by the Payment Card Industry Security Standards Council.