One would have to assume 'yes', but is JotForm PCI DSS [Payment Card In

  • Profile Image
    Dooley
    Asked on May 16, 2017 at 09:06 PM

    One would have to assume 'yes', but is JotForm PCI DSS [Payment Card Industry Data Security Standard] compliant host?

    We are a business hosting workshops and use your surveys as a registration/payment portal that allows people to input cardholder data and process transactions.

    Thanks.



    This is a re-post of a comment on Setting Up Your First Order Form

  • Profile Image
    Chriistian
    Answered on May 16, 2017 at 11:44 PM

    Please allow me to inform you that JotForm is certified as PCI DSS Level 2 Compliant Service Provider. Forms in JotForm uses 3rd party Payment Gateways integrations and we do not store sensitive cardholder data from the users. 

    For more info please refer to our Privacy Policy

    Related Blog: 10 Reasons You Should Use JotForm for Collecting Payments.

    If you have more questions, please let us know.

    Regards.

  • Profile Image
    Dooley
    Answered on May 17, 2017 at 02:51 PM

    Our 3rd party payment processor, Authorize.net, is integrated through our JotForm storefront and just announced their security roll-out for TLS 1.2.

    So once they become compatible with the updated PCI requirements, they'll just be meeting JotForm - who's already there... and things will be all good?!

    Thanks!

  • Profile Image
    Nik_C
    Answered on May 17, 2017 at 03:34 PM

    I'm not sure I'm following you, but if you're referring to Authorize.net's security, maybe this post would help: https://www.authorize.net/solutions/merchantsolutions/merchantservices/security/

    Also, here is some additional information about Authorize.net PCI compliance https://www.authorize.net/resources/pcicompliance/

    Let us know if you have any further questions or if you had something else in mind.

    Thank you!