2018 ProofPort Retrospective


2018 was a big year for the loss of public trust in corporate security and privacy, which increased mainstream awareness of the importance of security and privacy compliance in companies.

2018 continued the streak in high-profile security breach and data loss headlines  - impacting companies such as British Airways, UnderArmor, Marriott, Equifax, Google, and Facebook.

2018 was also the year that Apple doubled-down on privacy - strategically positioning themselves against Google and Facebook. Consumers became concerned with questionable use of their data and privacy violations.

2018 was the year that voice-enabled assistants Amazon Alexa and Google Assistant went mainstream - raising a host of new privacy concerns.

2018 also saw Europe’s GDPR (General Data Protection Regulation) go into effect - altering business’ data policies and processes, not only for European companies, but also for global internet businesses of every size. Soon, initial penalties and litigation will help solidify and attune everyone to the best practices for GDPR compliance.

2018 was also a year of change for ProofPort, as we retired SavvyPCI and SearchPCI, and ushered in a simplified business model to better serve the existing compliance and RegTech marketplace.

Third-party security and privacy issues


The majority of 2018’s lapses in security and privacy were part of a negative trend in which third-parties continued to be the weak link in many larger security and compliance efforts. ProofPort has seen this issue repeatedly and aims to help organizations reduce third-party exposure/risk with better, always-up-to-date, compliance data and capabilities.

‍Many organizations are trying to improve their third-party B2B relationships with an improved controls but still need to find an affordable reliable way to maintain up-to-date compliance data to feed controls. We’ve seen first hand how difficult it can be to exchange and maintain third-party proof that can so quickly become out-of-date - both for the provider/publisher of the data and the collector - because of the high, repeating cost in time and money, not to mention the hassle, of obtaining the latest data every year, quarter, and incident.

While there are many compliance, risk, and response management solutions in the marketplace, most of them will deliver better results if they have a source of reliable and affordable always up-to-date third-party proof - from both public sources like the PCI Council, and private B2B relationships. ProofPort’s goal is to assist businesses and partners with their challenges by delivering a simple way to  automatically maintain always up-to-date proof of compliance between providers, vendors, partners, and B2B customers.

By helping eliminate the costs, risks, and hassles of keeping your proof of compliance data up-to-date we hope that we can help your IT, Risk, Compliance, Vendor, and Procurement teams, processes and systems win back their time, so they can pay attention to other priorities.

We’d love to come along side your team’s efforts to reduce the cost, risk, and headaches of exchanging and maintaining your third-party proof of compliance.


ProofPort began closed-Beta in February-2019 and will become generally available before end of Q1 of 2019.

Also, because we are getting so much interest from SaaS providers regarding publishing proof for their customers, we will be attending SaaStr February 5th through 7th 2019. Hope to see you there!