Anyone involved with the processing, transmission, or storage of card data must comply with the Payment Card Industry Data Security Standards (PCI DSS). Our platform (TRIPDAZE.COM) uses Stripe Merchant Processor, institution that has been audited by an independent PCI Qualified Security Assessor (QSA) and is certified as a PCI Level 1 Service Provider. This is the most stringent level of certification available in the payments industry.
PCI compliance is a shared responsibility and applies to both our business and Stripe alike. When we are accepting payments, you must do so in a PCI compliant manner. The simplest way to be PCI compliant is to never see (or have access to) card data at all. Stripe makes this easy by doing the heavy lifting to protect our customers’ card information.
PCI compliance is simplified as long as payment collection information is securely transmitted directly to Stripe without passing through our servers. Payment pages are secured using Transport Layer Security (TLS) so that they make use of HTTPS.