skip to Main Content


Meeting and Exceeding the FTC Safeguards Rule

The FTC Safeguards Rule is a series of cybersecurity standards to help organizations manage consumer information with care and diligence. Promoting robust data protection practices, these standards compel companies to assess, maintain, and improve their information security protocols – advocating a solid and strategic approach to customer data protection and monitoring.

Supporting the Core Requirements of the FTC Safeguards Rule

  • Risk assessment: Gain clear visibility to track and manage an organization’s risk level across systems, applications, assets, and data. Insight everywhere, from cloud clusters to the data center 
  • Manage service providers: Easily control devices and permissions, limiting access to customer data with zero-trust best practices and cross-environment microsegmentation
  • Monitor effectiveness: Real-time continuous surveillance and analytics to track adherence to prescribed security protocols, ensuring consumer data is constantly protected.
  • Promoting improvement: Analytics and reporting to identify areas for betterment and update security measures to more effectively protect consumer information 
  • Protect critical infrastructure: Implement real-time file integrity monitoring to detect and prevent unauthorized alterations to key configuration and log files 
brief-icon-zerottrust (1)

FTC customer data defense best practices

Securely configure assets 

Minimize attack surface by reinforcing workloads and maintaining their integrity through ongoing configuration drift and permission creep detection, even in hybrid environments

Ransomware mitigation

Stop ransomware by overseeing entitlements and regulating internal traffic to thwart the spread through service account protection and microsegmentation

Zero-day protection

Real-time and immediate reactions to zero-day exploits. Seeing the unforeseeable, with swift and actionable security team notifications to prevent escalation of attacks

Halt east-west movement

Be sure they’re going nowhere. Stop the lateral movement of any compromise. Oversee service account behavior and regulate internal traffic to protect against attack techniques

Security posture insights

Comprehensive application intelligence for quickly assessing critical security challenges. Real-time visibility of workload security, account activity, and the application stack


PCI DSS stands for Payment Card Industry Data Security Standard. It is a set of security principles designed to ensure that all companies accepting, processing, storing, or transmitting credit card information maintain a secure environment. Instituted by major credit card companies like Visa, MasterCard, and American Express, PCI DSS compliance is mandatory for businesses dealing with cardholder data. Compliance aims to reduce credit card fraud and protect both merchants and consumers. Non-compliance can lead to penalties, increased transaction fees, and reputational damage from potential breaches. 

The Payment Card Industry Data Security Standard (PCI DSS) is a cyber security framework established to safeguard credit card transactions against data theft and fraud. PCI DSS mandates businesses that handle cardholder data to uphold specific security measures and was developed by some of the world’s largest credit card providers. This includes securing and strengthening IT infrastructure, maintaining a vulnerability management program, and ensuring robust access control, among other requirements. In the arena of cybersecurity, PCI DSS is a pivotal standard that acts as a recognized stamp of trustworthiness and security for electronic financial transactions. 


TrueFort Platform: Clear Application Visibility
TrueFort™ Platform: Controlling Lateral Movement
TrueFort Platform: Controlling Lateral Movement
microsegmentation solution brief
Microsegmentation Solution Brief
TrueFort Platform: Zero Trust Segmentation and Workload Protection
Back To Top

Bob Williams

Advisor | Venture Partner - West Coast, Canaan
Maha Ibrahim, Canaan

Maha Ibrahim

Observer | General Partner - West Coast, Canaan

Eileen Spellman


Charles Collins

Observer - Mng. Director, Emerald Development Ptrs.

Matt Hathaway


Matt Hathaway serves as TrueFort’s Chief Marketing Officer, leading the global marketing strategy to get TrueFort the recognition it deserves. Matt has extensive knowledge of security users, buyers, and landscape, as well as a track record of building high-performing marketing and product teams. He has over 15 years’ experience in the security market that span fraud prevention, vulnerability management, SIEM, cloud workload protection, data security, endpoint protection, and application security.

Prior to joining TrueFort, Mr. Hathaway was VP of Product Marketing at Imperva, a leader in Application and Data Security, where he led Product, Content, and Technical Marketing, SEO, and Competitive Intelligence. He was also VP of Product Marketing at Carbon Black (acquired by VMware), served in multiple product and marketing roles at Rapid7 (including through its IPO), and held product roles at RSA Security and Uptycs.

Lane Bess

Member - Principal & Founder, Bess Ventures & Adv.

Motti Finkelstein

Advisor - Chief Information Officer, Intel Corporation

Steve Katz

Advisor - Founder & President, Security Risk Solutions

Truefort customer support

TrueFort customers receive 24×7 support by phone and email, and all software maintenance, releases, and updates

For questions about our support policy, please contact your TrueFort account manager or our presales team at

Support Hotline

Email Support