Trust and security on Shopify’s platform
The most important thing to us is your trust and confidence. That's why we have chosen to use Shopify for your payment processing.
More than 1,000,000 merchants, and millions of customers entrust Shopify with their private information, and we take that responsibility seriously. Shopify takes every step to keep user data secure and private.
What is PCI Compliance?
The Payment Card Industry Data Security Standards (PCI CSS) is used to increase controls for payments to reduce fraudulent activity. Today, it’s a security standard for all organizations that handle credit card payments and debit information.
Reaching PCI compliance will allow you to sell online securely and accept payments from a wide range of vendors. These include Mastercard, Discover, or American Express.
Is Shopify PCI Compliant?
Yes. All stores that are hosted on Shopify are PCI compliant by default. This means merchants can keep their customers’ payment information safe and secure. Shopify’s compliance covers 6 PCI standard categories which apply to every store powered by the platform:
1. Maintaining a secure network
2. Protecting cardholder data
3. Maintaining a vulnerability management program
4. Implementing strong access control measures
5. Regular monitoring and testing of network security
6. Maintaining an information security policy
By taking these steps, Shopify shows that they have invested time and money to ensure PCI compliance for merchants and customers. Shopify works hard to keep your shopping cart and ecommerce hosting secure. Steps taken include on-site assessments to validate compliance to continuous risk management. Level 1 PCI certification protects your store, shopping cart, and web hosting.