If you’re looking to accept credit or debit card payments, you need to meet certain payment card security standards – PCI compliance – to ensure your customers’ information is protected. When we process payments for you, you can spend less time detailing with data security and more time growing your business.Get Started Now
PCI DSS (Payment Card Industry Data Security Standard) is a set of comprehensive requirements that all businesses who handle credit and debit payments must comply with, regardless of size or number of transactions they process. The requirements for maintaining PCI compliance include completion of an annual PCI self-assessment questionnaire and a quarterly network scan.
PayPal has achieved PCI DSS compliance certification under various programs and standards.* This underscores our commitment to security and the protection and integrity of customer data.
*The Visa Cardholder Information Security Program, MasterCard Site Data Protection Program and American Institute of Certified Public Accountant's Statement of Auditing Standards #70 (SAS70) certification.
PayPal stores customers’ credit and debit card account information. We don’t even share it with you, so you don’t need to worry about putting their data at risk. By accepting PayPal, you’re telling your customers you take their data security seriously.
Our most popular products, including Website Payments Standard, PayPal Checkout, Invoicing and PayPal Here, are already PCI compliant. And, because we handle the payment card information for you, you can forget about the time, cost and headache of maintaining PCI compliance.
If you manage transactions yourself and touch, store or transmit credit card details, you’ll need to obtain PCI compliance certification for your business. If you accept non-PayPal payments as well, you’ll need to be compliant.