PayCore.io has completed an annual PCI DSS assessment using an approved Qualified Security Assessor (QSA). The auditor reviewed PayCore.io environments, which include validating the infrastructure, development, operations, management, support, and in-scope services. PayCore.io is certified as a service provider compliant to PCI DSS version 3.2.1. The assessment results in an Attestation of Compliance (AoC), which is available to customers issued by the QSA. The effective period for compliance begins upon passing the audit and receiving the AoC from the assessor and ends one year from the date the AoC is signed.
Customers who want to utilise our card processing service can use these validations in many of the underlying portions, thereby reducing the associated effort and costs of getting their own PCI DSS certification. PayCore.io significantly simplifies the PCI burden for both merchant and institutional customers. It is important to understand that PCI DSS compliance status for PayCore.io is not automatically translated to PCI DSS certification for the services that customers provide using our platform. Customers are responsible for ensuring that they achieve compliance with PCI DSS requirements.