The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit card and debit card information. Defined by the Payment Card Industry Security Standards Council, the standard was created to increase controls around credit card data to reduce credit card fraud via its exposure. If you want to sell online and accept payments from Visa, MasterCard, American Express or Discover credit cards, your software and hosting needs to be PCI compliant.
There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:
Yes, Shopify (District Grain's host and payment gateway) is certified Level 1 PCI DSS compliant. This compliance extends to all online stores powered by Shopify.
Shopify is very serious about securely hosting our online store and have invested significant time and money to certify their solution is PCI compliant. From annual on-site assessments validating compliance to continuous risk management, Shopify works really hard to ensure our shopping cart software and ecommerce hosting is secure.
Shopify is certified PCI compliant in the following documents:Find us on Visa's list
All Shopify online stores are automatically PCI compliant. When we choose Shopify to power our online store, we knew we could rest easy knowing they invested significant time and money to obtain our Level 1 PCI certification and that their certification covers our online store, its shopping cart and web hosting.
For additional information on PCI Compliance, visit the PCI Compliance Guide website.