Companies that accept credit or debit card payments for goods or services must comply with the Payment Card Industry Data Security Standard (PCI DSS), a rigorous set of controls maintained by the PCI Security Standards Council.
Software companies typically shift the responsibility to payment processors because they have the infrastructure and expertise to securely manage payment transactions. At Simplifya, we use Stripe and Intuit as our payment processors.
Stripe
Simplifya uses Stripe as its payment processor for all subscription charges via the app. Stripe is PCI certified annually as a Level 1 Service Provider. You can verify Stripe's current standing on Visa's website.
As a Stripe customer, Simplifya is required to validate PCI compliance annually via a Type A Self-Assessment Questionnaire.
Intuit (QuickBooks Online)
We occasionally use QuickBooks Online (developed by Intuit) to process one-time payments outside of the app. Intuit is PCI certified annually as a Level 1 Service Provider.
Amazon Web Services
We do not process card payments through Amazon Web Services (AWS). However, our app is hosted on AWS and so we are occasionally asked if AWS is PCI compliant.
Comments
0 comments
Please sign in to leave a comment.