What is PCI and why it is important?
Any organization involved with the processing, transmission, or storage of card data must comply with the Payment Card Industry Data Security Standards (PCI DSS).
Checkout Technology Ltd, a company within the Checkout.com group, is certified for PCI DSS as a Level 1 Service Provider, which is the highest standard set by the payment card industry to ensure that credit card data is processed, stored or transmitted in a secure environment.
Who is responsible for PCI DSS compliance?
PCI compliance is a shared responsibility between your business and Checkout.com. So, when accepting payments, it is essential that you do so in a PCI-compliant manner. The complexity of this depends on your integration methods, but the simplest way is never to see or access your customers' card data. Here are our tips:
Use Transport Layer Security (TLS) for all payment pages, so that they use HTTPS.
What are the requirements?
There are four levels of PCI compliance that merchants are organized under, based upon their card transaction count over a 12-month period. The PCI level in combination with the integration method will determine the compliance requirements for each merchant. If you have any question concerning your PCI obligations please feel free to send an email to email@example.com.
|PCI level||Transactions processed / year||Key requirements|
What happens if my level changes?
If you reach Level 1 (more than 6 million transactions), we will identify this and contact you to make sure you can provide the relevant documentation and stay compliant.
What documentation do I need to provide to attest of my compliance level with PCI DSS requirements?
The PCI requirements for the different type of integration methods are as follows: