Simple, Transparent Pricing

Get Unlimited and Uninterrupted Monitoring at a fixed price

Both these plans offer the following to help you meet your compliance requirements

6.4.3 (a) Automatic Script Inventory Creation with Justification Support
6.4.3 (b) Script Authorization Monitoring & Enforcement Control
6.4.3 (c) Script Integrity Monitoring & Enforcement Control
11.6.1 Page Integrity Monitoring & Enforcement Control
Threat Intel based Alerting System for Attacks and Anomalies
Single Page Evidence Report with PDF Export Support
1 year of Data Retention as required by PCI DSS

Business

Engineered to be Simple

$999 /year/domain

6.4.3 & 11.6.1 Compliance Capability
Self-service Model
JavaScript Agent - Standard Features
Content Security Policy - Partial Support
Up to 100,000 pageviews/mo
1 payment page(s) per domain

Enterprise

Engineered to be Flexible

Custom

6.4.3 & 11.6.1 Compliance Capability
Managed Onboarding and Configuration
JavaScript Agent - Advanced Features
Content Security Policy - Full Support
Remote Scanning - Automated & Manual
Data Hosting Geolocation Preference
Enterprise terms

Don't see a plan that fits your needs?

Are you a registered non-profit?

We understand how you operate. We offer special plan to support your mission.

Domdog is a Lightweight and Effective Security Solution

Unlike other alternative solutions, Domdog uses a lightweight javascript agent to enforce the PCI controls and also utilizes web standards to achieve the same.
Manager, Information Security | Major E-commerce provider in US

Business Plan FAQs

How do I set this up?

To set up the Domdog system, navigate to the Domdog dashboard where you will find a link to the JavaScript agent tailored for your site. Simply add this script to your payment pages. For optimal performance, place it as the first script on the page or at least among the first scripts to load. This is the only setup required.

How much time will it take to meet the 6.4.3 & 11.6.1 compliance requirements?

Once the script is installed, you can expect to be fully set up within 1-2 weeks. Initially, the system will operate in ‘Learning Mode’. After a week or two—depending on your site—you can switch to ‘Monitoring Mode’, which activates all necessary controls for compliance. Additionally, you will need to provide justifications for the scripts listed in the Script Inventory.

How much regular management will be needed from me?

After the initial setup, mode switching, and justifications are complete, your ongoing management will primarily involve reviewing and responding to alerts generated by the system. This can be done at your convenience: Serious and High Severity Alerts: Address immediately. Normal Alerts: Review once a month or quarterly. Each alert provides three response options: ‘Accept Behaviour’, ‘Reject Behaviour’, and ‘Ignore Behaviour’. You only need to click on the appropriate button.

How do I prove to the auditor that I am meeting the 6.4.3 and 11.6.1 requirements?

The Dashboard offers a Single Page Evidence report that demonstrates compliance with the required controls. This report can be exported as a PDF for easy sharing with auditors if necessary.

What should I do if I don’t understand a script identified by Domdog or an alert generated by Domdog?

If you encounter any confusion regarding a script or alert, please reach out to us. Our technical team is available to assist you with guidance and clarification.

Enterprise Plan FAQs

Should I use JavaScript Agent, CSP, or Remote Scanning?

The choice between using a JavaScript Agent, Content Security Policy (CSP), or Remote Scanning will be determined through a discussion with you to understand your preferences and specific constraints.

How do you calculate the price of the service?

The quote is primarily based on the following factors:

Number of Sites
Number of Payment Pages
Total Page Views for All Monitored Pages

We already have a CSP policy on our website; can you utilize it?

Absolutely! Having an existing CSP policy simplifies the process of meeting compliance requirements, as Domdog can leverage your current CSP configuration.

How much time will it take to meet the 6.4.3 & 11.6.1 compliance requirements?

Based on our experience, achieving compliance can often be completed in less than a month. The timeline depends on the selected monitoring mode and the time required to deploy necessary components within your environment.

What does the managed service look like?

Our team collaborates with you from the outset to determine the appropriate monitoring mode. We then analyze your system to establish an initial baseline, policies, and rules. Following this setup, we will engage with you periodically to ensure your system remains updated.

Can you store all of my data within my country of choice?

Yes! As long as a cloud provider has a data center in your preferred region, we can set up a dedicated instance that captures, processes, and stores all of your data locally.

How do I prove to the auditor that I am meeting the 6.4.3 and 11.6.1 requirements?

The Dashboard provides a Single Page Evidence report that demonstrates compliance with the required controls. This report can also be exported as a PDF for easy sharing with auditors if needed.