PCI Compliance

PCI DSS are a set of standards to help protect businesses and shoppers from data theft and fraud.  It is mandatory for all businesses who accept card payments to comply by getting a PCI certificate.   This applies to all types of card payments: online, by mail, over the phone or using credit card terminals.

Opayo has the highest level (Level 1) of PCI DSS certification. View our PCI DSS certificate. This can reduce your compliance requirements. 

 

Becoming PCI DSS compliant

You should speak to your merchant acquiring bank so they can refer you to their preferred Quality Security Assessor (QSA). 

No matter what type of payments you're accepting (online, over the phone or using card machines), you'll only need one PCI certificate for your business

PCI certificates for businesses accepting online payments

If you're processing payments online through your website, the requirements for Pi integrations are very simple.

 

Pi Integration (drop in .js)

  • Simplified PCI compliance using an online self-assessment questionnaire with monthly or quarterly vulnerability scans.
  • Complete PCI form SAQ A

 

Pi Integration (own form)

  • Simplified PCI compliance using an online self-assessment questionnaire with monthly or quarterly vulnerability scans.
  • Complete PCI form SAQ A EP

https://pcisecuritystandards.org/document_library?category=saq&document=saq