Archives Glossary Terms

Bring Your Own Device The culture of employees using their own laptop, phones and other devices for work purposes.  Organisation’s may apply varying levels of control over personal devices, with the consent of the owner.

Internet of Things The popular name for connecting household, and everyday, objects to the Internet and each other.

Transport Layer Security A protocol to provide a secure connection, often used for email and other data transfers.

Secure Socket Layer A secure Internet connection which established an encrypted link between the user and web server to protect data in transit and verify the source.

Active Directory A Microsoft network technology allowing central management of users, security policy and network services.

Standard Operating Procedure A documented guide for carrying out routine operations.

SAQ Self Assessment Questionnaire A PCI requirement for an organisation to complete a questionnaire and make a attestation of compliance.  Usually for lower volumes of card transactions.

Report on Compliance A report produced following an assessment of compliance to PCI requirements for merchants who process a certain volume of card holder information. More on PCI.

Personal Identifiable Information Information which may identify an individual person.  Often used in the scope of the Data Protection Act.

Return on Investment The benefits and rewards achieved after an investment has been made, justifying the initial outlay. Such as an increase of profit as a direct result of investing in ISO certification.