Payment Security Information

This website is powered by Shopify which includes a PCI compliant shopping cart and hosting for online stores.

PCI - Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit card and debit card information. Defined by the Payment Card Industry Security Standards Council, the standard was created to increase controls around credit card data to reduce credit card fraud via its exposure. All online sites that accept payments from Visa, MasterCard, American Express or Discover credit cards, the software and hosting needs to be PCI compliant.

There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:

Maintain a Secure Network
Protect Cardholder Data
Maintain a Vulnerability Management Program
Implement Strong Access Control Measures
Regularly Monitor and Test Networks
Maintain an Information Security Policy

Shopify is certified Level 1 PCI DSS compliant.

Shopify is very serious about securely hosting online stores and have invested significant time and money to certify their solution is PCI compliant. From annual on-site assessments validating compliance to continuous risk management, Shopify work really hard to ensure their shopping cart software and ecommerce hosting is secure.

Shopify is certified PCI compliant in the following documents:

Visa's list

MasterCard's list