Our team is planning to develop a Jira plugin that will monitor billing payments from the bank side. We're aware that integrating financial data with Jira may have specific legal, security, and compliance requirements. Could anyone provide insights on the following:

1. Compliance and Legal Policies: What are the key compliance frameworks (e.g., GDPR, PCI-DSS, etc.) we need to consider while developing this plugin?
2. Data Security and Privacy: What security protocols should we implement to protect sensitive financial data during the integration between Jira and the bank's systems?
3. Certifications and Standards: Are there specific certifications (e.g., ISO, SOC 2, etc.) or standards we need to obtain or comply with in order to monitor billing payments securely?
4. Banking APIs and Regulations: Are there any particular regulations or restrictions for integrating with banking systems for financial transaction monitoring?

Any guidance or recommendations on the necessary policies, certifications, or best practices would be highly appreciated.