SECURE YOUR INTEGRATION

To learn more about PCI compliance and establishing good security practices, check out our integration security guide.

Our users trust Stripe with their sensitive data and rely on us to be good custodians of their customers’ data as well. As a payments infrastructure company, our security posture continually evolves to meet the rigorous standards of the global financial industry.

Standards and regulations compliance

Stripe uses best-in-class security practices to maintain a high level of security.

PCI-certified

Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. This audit includes both Stripe’s Card Data Vault (CDV) and the secure software development of our integration code.

We provide our users with features to automate some aspects of PCI compliance. We analyze the user’s integration method and dynamically inform them of which PCI validation form to use. If a user uses Stripe Elements, Checkout, Terminal SDKs, or our mobile libraries, we pre-fill the user’s PCI validation form (Self-Assessment Questionnaire A) in their Dashboard. And to educate users on the subject of compliance, we have a PCI Compliance Guide that describes how to maintain compliance and how Stripe can help.

Subscribe to our Newsletter

Copyright ©2023 All Right Reserved.