Guy BalzamInformation security and product expert

Israel air force IT unit veteran, Chief Security Officer of ELAL Israeli Airlines, Product Manager of a leading information security product and two times startup founder

Recent Answers

There are many security standards you can "certify" your datacenter with, such as NIST or ISO. You can read more about them here:

In addition there are some SSL and Antivirus vendors who provide "security badges" that can be embedded to your website and prove that your DNS domain and SSL certificate are valid.

Having said that, If you are serious about security and want to leverage that as a competitive advantage you would probably have to implement deep security measures.
You could then publish these measures in a whitepaper that can be shared with your clients.

You can refer to what Amazon have published regarding their AWS product:


I believe the best way to do that what "mogl" does is by working with the merchants directly, in this case restaurants, and then cashback the customer credit card after a deal has been done.

From my experience as a PCI-DSS project manager for a large airline, issuers would not easily share their customers transactions even if they could.

Therefore I would challenge your question by rethinking on why do you need the credit card data? if it is for a similar use case as "mogl" or if you need the actual transaction for some financial app you may get access to that data by leveraging the "endpoint" of the transaction rather than the issuer.

Contact on Clarity

$ 1.67/ min

4.67 Rating
Schedule a Call

Send Message






Access Startup Experts

Connect with over 20,000 Startup Experts to answer your questions.

Learn More

Copyright © 2022 LLC. All rights reserved.