DataDivider has been a certified Level 1 PCI DSS Service Provider for the past decade helping organizations reduce their PCI DSS compliance risks and costs for telephone, fax, mail order and chat payment transactions. A pioneer in the industry introducing the technique of Data Capture Cloaking to facilitate the secure entry of cardholder data without exposing this data to endpoint devices. DataDivider’s innovative solutions ensure the minimal impact to businesses as they achieve their compliance goals.

Simplicity is achieved by adapting existing applications without the necessity of any systems integration. Privacy data is simply replaced with format preserved tokens which are injected directly into existing user interfaces by DataDivider. This ensures clients can achieve compliance in weeks rather than months.

From its background in PCI DSS DataDivider has evolved to helping organizations meet their other privacy data compliance requirements such as HIPAA and GDPR. With its wealth of expertise in effectively and efficiency securing card account data it is now helping organizations benefit from the countless lessons learned with PCI DSS for all data compliance needs.

Our Leadership

Over 30 years of sales and marketing experience much of this in early technology startups. Graham leads the charge in DataDivider’s sales and marketing effort embracing the early adopters of DataDivider’s innovative solutions.

Management Team

John D Clark

John D. Clark, CEO

John Clark brings over 30 years of management experience in the high technology business to the team. He has held executive management positions in sales and marketing in the Information Technology industry and his experiences cover consulting services, IT security services, hardware and software. Prior to joining ExoIS he had been a Management and Marketing Consultant working primarily with high technology start-up businesses in the software, security services and professional services market places.

John became a consultant following 11 years with Hitachi Data Systems (HDS), the last 5 of which as as an Executive Vice President, having been promoted to that position after 6 years with HDS as European Vice President of Marketing based in London. During his tenure as EVP, he initiated and then led the company’s first major move into the open systems and solutions business as head of their New Business Unit.

Prior to joining HDS, John spent 22 years with IBM where he worked in a variety of management positions in systems engineering, sales and marketing in both in the UK and in IBM’s European headquarters in Paris.

John holds a BSc Hons Degree from Hull University in England.


Graham Thompson, VP Sales and Marketing

Graham brings over 30 years of sales and marketing experience much of this in early technology startups. Graham leads the charge in DataDivider’s sales and marketing effort embracing the early adopters of DataDivider’s innovative solutions.

For the past 15 years Graham has focused his career in early stage startups tackling compliance for both PCI DSS and Sarbanes Oxley (SOX). At DataDivider he has helped the company transition from PCI DSS into managing Privacy Data for both GDPR (General Data Protection Regulation) and HIPAA (Health Insurance Portability & Accountability Act). Graham has been an active speaker throughout his career which has not only focused on compliance but on data
management too. This combination gives great insight on how businesses manage privacy data today and the opportunities for managing this data in the future.

Many of the startups Graham initiated continue to thrive today including Semafone, ClusterSeven and Gaine Solutions. Other companies were acquired where their products still generate considerable revenues and were leaders within the respective Gartner magic quadrants including Rochade now at ASG and MDM at Informatica.

Management Team

Ravi Dhaddey , CFO

Mr. Dhaddey has been practicing law for over 20 year and is the founding partner of GoldPoint Law Group. His practice areas are taxation, international tax and estate planning. Before Mr. Dhaddey was a partner at GoldPoint, he worked at Deloitte in the Private Equity Mergers and Acquisitions department. Prior to Deloitte, Mr. Dhaddey worked at PriceWaterhouseCoopers in their Mergers and Acquisitions and Corporate Tax department. At PWC he reviewed tax provisions under FAS 109, advised his clients on the validity of their internal tax controls under Sarbanes-Oxley Act Section 404. Also he reviewed federal and state tax returns for corporations, limited liability companies, partnerships and individuals. He also performed tax due diligence for strategic clients, reviewed merger agreements, reviewed partnership and joint venture agreements.

Over the last fifteen years of tax and legal consulting in Silicon Valley, Mr. Dhaddey has represented start-up companies, numerous founders, foreign corporations and high net worth individuals on legal and tax issues relating to formation, founder issues, capital structuring, estate planning and mergers and acquisitions.

Mr. Dhaddey has a Bachelor of Science in Biochemistry for University of California, Riverside, Graduate Studies in Accounting from San Jose State, Juris Doctrine from University of San Diego and a Master of Laws in Taxation from Georgetown University Law Center, Washington, D.C.
Mr. Dhaddey is licensed to practice in California.



Ravi Subramanian, Ph.D.

Ravi has been involved with the communications IC industry for 20 years, spanning executive, R&D, marketing, and entrepreneurial roles. Companies include TCSI, AT&T Bell Laboratories, Synopsys & Berkeley Design Automation.

Ravi has been named to RutbergCo’s Wireless Influencers list every year since 2006- the list cites the 200 people with the greatest influence on the wireless industry. He is also a Charter Member of TiE (The Indus Entrepreneurs), a non-profit global network of entrepreneurs and professionals, established to foster entrepreneurship and nurture entrepreneurs. In April 2010, Ravi was elected to the EDA Consortium (EDAC) Board of Directors for the 2010-2012 Term.

Ravi received his BSEE (honors) from the California Institute of Technology and his Ph.D. in EECS from the University of California at Berkeley, where he was a recipient of the prestigious UC Regent’s Fellowship.


Andrew Nash

Andrew Nash is CTO of Trulioo, an identity services company, and previously was Head of Identity at Google and PayPal. Previously he managed the security architecture and operations groups at PayPal. He is Technical Advisor to HotPlate, Apani and Provilla (acquired by Trend Micro).

Formerly the CTO for Sonoa Systems and Reactivity(acquired by Cisco), Andrew was awarded as one of the “InfoWorld Top 25 Most Influential CTO’s of 2006″.

At RSA Security, Andrew was Director of Technologies in the Office of the CTO developing trust models and security technology. Within the framework of the Liberty Alliance Strong Authentication Expert Group, Andrew led the creation of an open model for user authentication systems. He is a known leader in PKI and Web-Services security markets and the co-author of numerous Web Services specifications including Web Services Security, WS-Trust, WS-Federation, WS-SecureConversation and WS-SecurityPolicy. Andrew is an author of a book on Public Key Infrastructure.

During his tenure at Digital Equipment Corporation, Andrew developed products including Alta Vista Search, Network Computers, Micro Cash Payment systems and customer systems for online trading at the Australian Stock Exchange and the Systems Architecture for Optus.Andrew graduated from the University of Adelaide, Australia and holds a post graduate degree in Software Engineering from the University of Technology, Sydney

Ruth Xovox

Ruth Xovox has an extensive background in dealing with all aspects of compliance, risk management and information security, including hands-on operational experience, as well as, providing strategic risk assessment and scoring for leadership and board level audiences. She has strong regulatory experience with both domestic and international compliance standards such as SOX, PCI, FFIEC, SAS 70, CSSF, APRA, GLBA, and EU privacy laws.

Since 2007, Ruth was twice elected by the industry to represent PayPal on the PCI Security Standards Council Board of Advisors and was active on several taskforces including Brand Alignment and PABP (or PA-DSS). She has managed PCI and CISP audits for various companies including PayPal, Verisign, eBay, Skype and Trinity. Ruth led PayPal to become the first company to achieve PCI DSS 1.1 compliance. She also helped to drive and facilitate compliance for all PayPal merchants. Ruth remains the only person to have served as a Qualified Security Assessor, Service Provider, Acquirer, Merchant, Vendor and PCI Board of Advisors Member. Ruth maintains strong relationships with both the PCI Security Standards Council and prominent executives within the payment security space.

Ruth brings more than 15 years of technology experience in the U.S. and internationally with more than 10 years experience in information security and compliance. Ruth was educated in the US, UK and Europe and holds numerous industry certifications including CISSP, CISA, and CHFI.


Colin L. Macnab

Colin has more than 25 years of experience in the semiconductor and systems market related to the wireless communications industry. Colin was CEO of Artimi and was V.P. marketing and business development at Atheros, where he was part of the team that took the company public in 2004.

Colin has also been CEO of Morphics Technology, Inc. & BMA Communications and earlier in his career Colin held engineering and management positions at Xircom, GEC Plessey, Linear Technology and Analog Devices.Colin holds a bachelor’s degree in electronic engineering from the University of Glasgow, Scotland.

Our Clients