PCI DSS Compliance

PCI DSS Policy

QuadPay is PCI DSS compliant. The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes.

The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud. Maintaining security of cardholder data is very important to QuadPay.

Upon agreement to the QuadPay terms, QuadPay secures and protects the cardholder data according to the current applicable PCI standard for the life of the data needing to be retained. QuadPay acknowledge these responsibilities as being the organisation responsible for ensuring the safe handling and storage of sensitive customer credit card information and data for the Afterpay services.

QuadPay merchants must implement QuadPay’s solution according to QuadPay’s implementation guidelines. By doing so merchants assign their PCI DSS responsibilities for sensitive customer credit card information and data collected to QuadPay for tranasctions processed by QuadPay. Merchant’s may have other PCI DSS responsibilities that are independent of the QuadPay’s Merchant Services Agreement (MSA). It is the Merchant’s sole responsibility to remain informed of their PCI obligations and compliance status. Afterpay Attestation of Compliance (AOC) is available on request.

QuadPay’s Attestation of Compliance (AoC) is available upon request.

For further information please visit the official PCI org website www.pcisecuritystandards.org.