Best Practices for API Compliance & Privacy

In this whitepaper

APIs have become a primary target for hackers, who have discovered APIs are frequently under-secured and over-permissioned. Auditors and regulators are also noting the risk created by public-facing APIs.

This whitepaper reviews the best practices for securing APIs and addresses specific regulatory compliance and privacy requirements for APIs, including:

  • Compliance: PCI, HITRUST, FedRAMP, OpenBanking
  • Privacy: GDPR, CCPA, HIPAA
  • Security Frameworks: SOC 2, ISO 27001