Real example: How we safeguarded a client’s PAN in Slack & Zendesk

Hey there,

Thought you’d find this relevant: we recently worked with a mid-sized fintech whose support agents unknowingly received full card data from customers via Slack and Zendesk. One slip-up, and they’d face PCI violations.

Using Strac’s auto-detection, the fintech instantly flagged and redacted/masked any PAN in live chats and tickets—fulfilling both 4.2.2 (securing PAN in messaging) and 3.4.1 (masking PAN wherever displayed). They passed their QSA assessment with zero major findings.

We’d love your take on how we can make QSAs’ jobs easier. Have feedback or want to see a short demo? Reply to let me know!

Thanks once again!