USA for IOM
CASE STUDY
Empowering a Mission-Driven Nonprofit with PCI Compliance
RSI Security helped nonprofit leader USA for IOM achieve PCI compliance and
build a secure digital fundraising foundation.
About the Client
USA for IOM is the U.S. nonprofit partner of the International Organization for Migration (IOM), the UN agency responsible for migration. Their mission is to raise awareness and mobilize support for humanitarian and development initiatives that improve the lives of migrants and displaced communities globally. With a small but passionate team, USA for IOM plays a pivotal role in funding life-saving programs and amplifying the voices of vulnerable populations.
The Challenge Achieving PCI Compliance for Digital Fundraising
When USA for IOM set out to accept digital donations independently for the first time, one major hurdle stood in their way: achieving Payment Card Industry (PCI) compliance. In the past, donation platforms and data systems were handled by a much larger partner organization. But this year, USA for IOM needed to stand on its own.
With a team of just four—and no dedicated IT staff—the organization faced:
- A steep learning curve in understanding PCI DSS requirements
- Tight internal resources and capacity
- A complex, evolving compliance landscape
- High urgency to meet donor expectations
and support growing fundraising needs
This wasn’t just a checkbox exercise. It was critical infrastructure for funding life-changing work around the world.
“Despite our limited technical knowledge, RSI made the process approachable by explaining requirements in plain language and helping us understand what was needed from our vendors and systems.”
— Sonia Agnesod, Planning, Coordination, and Compliance, USA for IOM
“They Didn’t Just Guide Us—They Partnered With Us.”
Achieving Success Through Collaboration
This success wasn’t just a milestone—it was a transformation. Key to that transformation were RSI Security team members Kavya Prakash, Peter Phaneuf, and Patrick Murphy, whose leadership and expertise elevated the entire engagement. Their clear communication, proactive support, and steady guidance turned what could have been a daunting audit into a valuable learning experience.
Thanks to their partnership, the USA for IOM team emerged stronger, more confident, and fully prepared for ongoing compliance.
“RSI Security went above and beyond throughout the engagement. Their team was consistently organized, responsive, and proactive... Their dedication made all the difference in our success.”
— Sonia Agnesod, Planning, Coordination, and Compliance, USA for IOM
Secure, Compliant, and Future-Ready
Achieving PCI compliance was a critical step in expanding USA for
IOM’s impact and outreach.
With a solid compliance foundation, the organization is now positioned to:
Pursue new funding opportunities
Build stronger donor relationships
Operate with increased
cybersecurity confidence
TESTIMONIALS
What our clients are saying
Peter Ripa
CEO of Century Club of San Diego Farmers Insurance Open
"We were looking for an IT partner who was both an ASV and QSA vendor with a long-term view of out organization's growing security needs. We were very pleased with the overall experience. I can sleep a little easier at night."
Dan Poloche
Director of Security and Compliance
Fattmerchant
"RSI Security is a great QSA for advanced service providers that leverage technology such as tokenization. First time PCI Level 1 service providers would also benefit from their knowledge and personalized approach."
Neil Zerrusen
Three Z Printing Co.
"We’ve partnered with RSI Security for over a year and are impressed with their professionalism, reliability, and commitment to our security. We would highly recommend RSI Security to anyone looking for a top-tier security provider."
LATEST
Case Studies
Epic Games Case Study
Prior to our partnership, we were ready for PCI compliance to be a daunting challenge. However, after working with RSI Security, everything about the process has been as efficient and painless as possible. We’ve turned a potential weakness into a strength overnight.
Macomb Community College Case Study
Any college has quite a few departments, who are often not on the same page when it comes to IT or security. RSI Security met with vendors, partners, and internal staff and made sure everyone understood what needed to happen and how to make it happen.
Lumistry Case Study
“Everything about the certification process was seamless, from preparation through the actual assessment. We’re looking forward to a continued partnership with RSI Security.”
Tilly’s Case Study
“RSI Security helped us get policies and procedures ready, set us up to gather the evidence we needed, and then facilitated every step of the PCI assessment.”
Power Digital Case Study
“Constant communication. Weekly meetings. Went out of their way to be minimally intrusive to our business.”
Meltmedia Case Study
“RSI Security was the best conversation, had the most appropriate pricing, and was just the right amount of invasiveness for our organization.”
WorkWave Case Study
“We didn’t really have a ton of experience in payments compliance, But the RSI Security team was always patient with us, explaining what we needed. It really felt like they were along with us at every step to make sure we were successful.”
Finix Case Study
“With RSI Security, we feel like a valued client, not just another name in a book of customers. And that means a lot, especially when working with a small, but growing, company like Finix.”
CUSTOMERS
Organizations that trust RSI Security
