PCI DSS · SAQ-A
self-assessment
verified
Filed Sep 12 · valid 12 mo
The Vault
Compliance built into the platform.
PCI controls, KYC and sanctions screening, document tracking, and an immutable audit trail — wired into every workflow, not bolted on later.
Compliance vault · Acme Coffee Co.
CompliantSOC 2 · Type II
audit · in progress
pending
Q1 attestation
KYC · Owner ID
Smarty + ID.me
verified
Re-screened daily
W-9 · ACH auth
Documenso · e-signed
verified
Aug 04
OFAC · sanctions
Sovos · auto-screen
verified
Last hit · 0
Audit log · 2yr
immutable storage
verified
12.4M events
12.4M events captured · exportable to CSV / API · immutable storage
Why a built-in vault
Compliance without the chaos.
For agents and ISOs, compliance touches every merchant, every processor relationship, and every document. Pulse makes it continuous instead of cyclical — pulled into onboarding, underwriting, and ongoing monitoring so the audit trail builds itself.
What's inside
Built for the regulated world ISOs operate in.
PCI DSS tracking
Monitor PCI status across the whole portfolio. Self-Assessment Questionnaires, vulnerability scans, deadlines — all surfaced before they become problems.
Document requirements
Define required documents per merchant type and processor. Auto-request, version, and audit every file in a centralized repository.
KYC + sanctions screening
Identity verification and OFAC screening run inline via Sovos and Smarty. Re-screen on a schedule so the audit trail stays current.
Audit trail
Every signature, document, decision, and status change is logged immutably. Exportable to CSV or piped via webhook for regulators.
Renewal & deadline alerts
Compliance bot watches every PCI renewal, license expiration, and document refresh. Alerts route to the right person before deadlines hit.
Regulator-ready reporting
AML/KYC summaries, document status, and incident logs available on demand. When the auditor asks, the export is one click.
Coverage
The areas Pulse tracks for you.
PCI DSS Self-Assessment Questionnaires
Quarterly vulnerability scan monitoring
AML / KYC verification status
OFAC sanctions screening (Sovos)
Business license + registration tracking
Insurance certificate management
Processor-specific compliance rules
Annual renewal reminders
Exception tracking + resolution
How it works
Five steps to a portfolio that audits itself.
- Step 1
Define requirements
Configure compliance rules per merchant type, processor, and risk band so every merchant has a clear path from day one.
- Step 2
Monitor status
A centralized dashboard tracks compliance state across the portfolio in real time.
- Step 3
Alert + escalate
Automated notifications fire when deadlines approach, documents expire, or status changes.
- Step 4
Collect documents
Secure portals collect uploads. Pulse validates, versions, and stores everything centrally.
- Step 5
Report + audit
Generate regulator-ready reports on demand. Full history, document trails, and decisions exportable instantly.
Outcomes
Continuous compliance instead of cyclical scrambling.
Avoid fines + penalties
Catch compliance issues before they become costly violations.
Streamline audits
Centralized documentation and audit trails turn audits into exports.
Reduce regulatory risk
Continuous monitoring catches drift instead of waiting for the annual review.
Protect your reputation
Consistent compliance across the book protects your standing with processors and regulators.
Who it's for
Built for the people who own the audit.
- Agents and ISOs tracking PCI DSS compliance across hundreds of merchant locations
- Compliance officers preparing for processor or regulatory audits
- Operations teams managing document-heavy merchant categories
- Risk teams that need continuous visibility into KYC and sanctions status
- Owners who want regulator-ready exports without adding headcount
Closed release · now taking applications
Stop chasing residuals in spreadsheets.
Boarding in minutes. Residuals that reconcile themselves. A platform that actually understands the way your team operates.
Invite-only cohort · Hand-picked for the closed release
PCI DSS compliantSOC 2 Type II99.9% uptimeMulti-processor