Subscribers,
Incredible news! After over 18 months of effort and thousands of labor hours, we're proud to say Liftoff Commerce has achieved PCI DSS (Payment Card Industry, Data Security Standard) Level 1 version 4.0 compliance! While working towards this standard, we created dozens of new features, strengthened our policies, improved our security posture, and increased trust in our relationships with provider networks such as Visa, MasterCard, Discover, and American Express.
What is the significance of PCI Level 1?
PCI Level 1 is designed for entities that process more than six million credit card transactions per year, and it carries one of the highest levels of scrutiny for data security possible. Like SOC2, this certification is achieved by working through approved and qualified assessors. The process involves an audit that takes a deep look into nearly every aspect of your organization, not just your security posture, before issuing a passing attestation of compliance.
What this means to you
Many companies are starting to require security questionnaires or even confirmed compliance from vendors. It's not uncommon for a subscriber to encounter red tape when onboarding a sizable new client. This level of PCI compliance holds more weight and validity than typical security questionnaire responses due to the high degree of scrutiny enforced by the PCI DSS standard. We can help you with new opportunities by providing our AOC (Attestation of Compliance) when you are approached with security questions.
Learn more
If you're looking for additional details about the PCI standard, please see the resources below: