What is PCI DSS Level 1 Compliance?

The PCI SSC ( Payment Card Industry Data Security Standard ) was introduced on September 7, 2006, to handle the continuing evolution of the safety standards of the Payment Card Industry (PCI) to improve the safety of payment processes.  Level 1 relates to Paytia achieving and maintaining the highest level of compliance.

The PCI DSS is overseen by the PCI SSC (www.pcisecuritystandards.org), an independent body formed by brands of payment cards (Visa, MasterCard, American Express, Discover and JCB.). 

Does PCI compliance apply to me?

The PCI DSS refers to any organisation that accepts, transmits or stores any cardholder information, irrespective of the size or amount of transactions.

Do I have to complete a Compliance Self-Assessment Questionnaire (SAQ)?

The PCI DSS Self-Assessment Questionnaire is a checklist made and circulated by the PCI Security Standards Council, varying from 19 to 87 pages. Vendors use it as a tool to self-validate their compliance with PCI DSS. Paytia vendors are not liable for this SAQ or self-validation, as Paytia's systems comply with PCI DSS. 

When I use Paytia service, do I still have to pay a noncompliance fee? 

Our systems have end-to-end encryption out of the box.  We keep PCI software compliant at no extra price to you. If you use Paytia to process and transmit your card information, you do not need to take any measures to comply with PCI when using Paytia, and you do not have to pay any PCI compliance charges.

What are the risks for noncompliance? 

If your company does not meet PCI requirements, you may be at danger for information breaches, fines, expensive forensic audits and company inquiries, brand harm, and more.

I do not store credit card data, so PCI DSS compliance doesn’t apply to me?

If you accept credit or debit cards as payment methods, you are subject to PCI DSS compliance. 

I want to store payments for recurring billing? 

Using Paytia card vault and tokenization is the best way to store credit card information for recurring billing. The card data will not be received by using Paytia, and you will receive a "token" that can be used for recurring billing purposes. 



Find out more

Data Security

Paytia takes data protection seriously, as part of its corporate responsibility. Paytia holds Level 1 PCI DSS compliance and complies with GDPR.