Skip navigation

Threadless + Duo Security: A PCI DSS & Juniper SSL VPN Case Study

Download the Guide

Founded in 2000, Chicago-based Threadless is a crowd-sourced e-commerce art and apparel company with nearly one million users. Providing a platform for artists that want to contribute to and support the art community, artists can submit their original designs for consideration.

Users vote for their favorite designs to go to print. Continuing to support the community, Threadless gives back 20 percent of their profits of the designed merchandise to the artists that created the chosen designs.

As an e-commerce retailer, Threadless needed to meet PCI DSS (Payment Card Industry Data Security Standards) compliance in order to securely process online orders. After undergoing a security audit, they were told they needed to implement two-factor authentication to protect the personal, financial and transaction data of their customers, according to their IT Infrastructure Manager, Tristan Hammond.

Previously, Threadless had settled on using RSA’s two-factor solution, but suffered through a long and painful deployment process, as well as innumerable support issues post-setup.