Last updated: 2020-09-03
Yes. Freshdesk’s approach to PCI compliance is more comprehensive and allows for additional use cases, unlike Zendesk.
Zendesk's approach to PCI compliance is by redaction - i.e, the 15-19 digit primary account number (or PAN) entered into the Zendesk’s PCI Compliant Ticket Field is redacted to the last 4 digits prior to the data being submitted and stored on Zendesk.
On the contrary, in our approach - we store the PAN in its entirety in a secure vault. Account owners in Freshdesk have the authority to define who can unmask and view or edit this information - which is not possible in Zendesk.
Further, as part of our security by design approach, we employ data minimization principles to securely purge cardholder data after 30-days.