PCI Compliance

Payment Card Industry Data Security Standard (PCI DSS) compliance ensures that sensitive cardholder data is securely processed, stored, and transmitted.

Hyperswitch Cloud provides out-of-the-box PCI DSS Level 1 compliance—the highest level of certification—so you can handle payments securely without worrying about card storage or compliance complexities yourself.

Key Features of PCI Compliance on Hyperswitch Cloud

PCI DSS Level 1 Certification Hyperswitch is certified for PCI DSS 3.2.1 Level 1, ensuring robust security measures for card and other payments data.

Annual Audits Infrastructure and applications are audited annually by a PCI-approved scanning vendor to maintain compliance.

Tokenization for Secure Card Handling Hyperswitch tokenizes and stores customer card details in its cloud vault, reducing the need for merchants to store sensitive data.

Enabling Raw Card Acceptance with Payment Processors

To process raw card data securely through Hyperswitch:

Processor Configuration:

Many payment processors disable raw card acceptance by default. To enable it:

• Share Hyperswitch’s PCI Attestation of Compliance (AOC) with your processor's support team.

• Request them to enable raw card processing for your merchant account.

Stripe Integration Update:

• Stripe no longer allows raw card acceptance via its Merchant Dashboard.

• If required, share the PCI DSS compliance certificate of Hyperswitch or the third-party service provider managing raw card data with Stripe support.

Accessing the PCI AOC Document:

• Hyperswitch Cloud users can download the PCI AOC from the Compliance section under settings in the Hyperswitch Dashboard.

• Alternatively, email [email protected] for assistance.

Why Choose Hyperswitch for PCI Compliance?

• Simplified compliance management with automatic tokenization and secure storage.

• Global security standards maintained across all integrations.

• Reduced complexity and liability for merchants in handling sensitive card data.