PayCommerce is a PCI-DSS certified gateway services provider. User platform access into our cloud-based platform is highly secured at 3 levels:
- Network Layer: IPSec with AES256 and RSA2048 algorithms for encryption and SHA-2 algorithm for data integrity.
- Application Layer: sFTP and TLS 1.2. Encryption algorithms used are AES256 or AES128. Authentication is performed using password or a public key algorithm (DSA or RSA).
- Multi-factor authentication using hard or soft tokens.
Data Center Compliance
- SSAE16 Type II SOC1 (the authoritative guidance for reporting on service organizations from the Auditing Standards Board of the American Institute of Certified Public Accountants.
- SWIFT Premier Operational Practice certification for our Data center also hosting SWIFT Service Bureau- the highest certification level offered by SWIFT for Service Bureaus.