ShopSite and PCI Compliance

PCI/CISP/PABP/PA-DSS

ShopSite® shopping cart software makes protecting payment information, such as credit card numbers, a top priority. In order to protect both our merchants and their customers, ShopSite has been certified to conform to the standards established by the major credit card processing companies.

Payment Application Best Practices (PABP) and the Payment Card Industry Data Security Standards (PCI DSS) are "a set of comprehensive requirements for enhancing payment account data security developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. International" (About the PCI Data Security Standard). In order to be certified, payment application vendors (such as ShopSite) must be audited by an independent auditor to ensure they meet the requirements of the PABP standards. You can learn more about PCI DSS and PABP at the PCI Security Standards Council website.

ShopSite® v10

ShopSite version 10 has been audited and certified to be in compliance with the PABP/PA DSS requirements. See the Certificate of Compliance (PDF) or check the Visa list of certified applications (PDF).

ShopSite® 8.1

ShopSite version 8.1 was the first version of ShopSite to be audited and certified to be in compliance with the PABP requirements. See the Visa list of certified applications (PDF).

Ensuring Your Compliance

In order to be in compliance with PCI requirements, merchants must use a PABP certified shopping cart which has been properly configured in accordance with the guidelines. For more information about configuring ShopSite to conform with PCI guidelines, see the PCI Security Practices section of our online help. Merchant PCI requirements also extend to practices outside of the payment application.