Home Forums Stripe Commissions & Gateway Support PCI Compliance and Stripe Plugin

NOTICE: We've Moved to a Ticket System for Support

As of August 31, 2017 (12am EST) our support forums will be retired (read-only), and we will be moving to a support ticket system.  This will allow us to better organize and answer support requests, and provide a more personalized experience as we assist our customers.

For the time being, we will leave our forums open for reading and learning while we work on creating a more robust Knowledge Base for everyone to use.

If you are a WC Vendors Pro customer please open a support ticket here. 

If you are a WC Vendors user please open a support ticket on the Wordpress.org forums.

The information on this forum is outdated and in most instances no longer relevant. Please be sure to check our documentation for the most up to date information.

https://docs.wcvendors.com/

Thank you to all of our customers!

 

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #10639
    Chris
    Participant

    Hey guys,

    I’m doing some research on this (and driving Ben crazy I’m sure) and just wanted to ask how PCI should best be handled with this plugin? From my understanding, using this gateway classifies the site as an A-EP (http://strongboxpayments.com/wp-content/uploads/PCI-3.0-SAQ-Chart1.jpg) which requires quarterly scans and a yearly pen test in order to be fully compliant. I just wanted to make sure I was understanding the way the plugin works (the plugin directly posts payment info from our site to the merchants site), so we can plan for the necessary measures to stay compliant.

    Thanks!
    Chris

    #10640
    WC Vendors Support
    Participant

    Hi Chris!

    The important thing to note is that the Stripe gateway is PCI compliant, but as to what level, I am not sure. No card data is stored on your webserver, only a token is stored. That token identifies to Stripe as to what card to recharge/refund/store, and that token is unique only to your site and only Stripe can decode it.

    You should have no problems being PCI compliant with our Stripe gateway.

    Ben

Viewing 2 posts - 1 through 2 (of 2 total)
  • The forum ‘Stripe Commissions & Gateway Support’ is closed to new topics and replies.