PCI Compliance: with PayPal, it’s easy
If you're looking to accept credit cards online, you need to meet certain payment card security standards – PCI compliance - to ensure your customers are protected.
With PayPal, you can spend less time dealing with data security and more time growing your business.
What is PCI compliance
PCI DSS (Payment Card Industry Data Security Standard) is a set of comprehensive requirements all businesses that handle credit and debit payments must comply with, regardless of size or number of transactions they process. The requirements for maintaining PCI compliance include completion of an annual PCI self-assessment questionnaire and a quarterly network scan. Visit the PCI Security Standards Council.
If you manage transactions yourself and touch, store or transmit credit card details, you’ll need to obtain PCI compliance certification for your business.
Avoid the cost and complexity.
Businesses that collect credit card information to process online payments are required to:
- Build, maintain a secure network to protect payment card information
- Protect cardholder information
- Maintain a vulnerability management program
- Implement strong access control measures
- Regularly monitor and test networks
- Maintain an information security policy
- Pass quarterly remove vulnerability scans and more.
- Website Payments Standard handles sensitive customer information for you so you can spend your time and resources running your business and serving your customers.
We’ve got what you need for PCI DSS compliance.
Committed to data integrity.
PayPal has achieved PCI DSS compliance certification under various programs and standards.* This underscores our commitment to security as well as the protection and integrity of customer data.
Our most popular products, including Website Payments Standard , Express Checkout and Invoicing are already PCI compliant. And, because we handle the payment card information for you, you can forget about the time, cost and headache of maintaining PCI Compliance.
*The Visa Cardholder Information Security Program, MasterCard Site Data Protection Program and American Institute of Certified Public Accountant's Statement of Auditing Standards #70 (SAS70) certification.
How does Website Payments Standard make your payments PCI DSS compliant?
As customers shop on your site, they click a button to pay using their bank account, credit card or PayPal account. In any case, your customers pay on a secure, PayPal-hosted page. Because PayPal stores your customer’s credit card account information, you won’t need to worry about protecting stored cardholder data, encrypting data in transit, or restricting access to cardholder data.
We continually maintain and regularly validate the security of Website Payments Standard. As a result, you can focus on winning more customers and providing outstanding customer service.
Grow customer trust.
PayPal stores your customers’ credit and debit card information more securely. We don’t even share it with you, so you don’t need to worry about putting their data at risk. By accepting PayPal, you’re telling your customers you take their data security seriously.
Rely on us.
Get Started Now