Anyone involved in the processing, transmission or storage of credit card data must comply with the Payment Card Industry Data Security Standards (PCI DSS). The latest version of these standards, PCI DSS 3.0, adds new requirements for partners that vary based on how their application integrates with WePay. All WePay partners, including those using an Embedded Checkout need to be compliant. Here’s how to do so:
Checkout through WePay’s Embedded Checkout
Partners using Embedded Checkout will generally be required to fill out the SAQ-A, which is the simplest of the Self Assessment Questionnaires. This is because all of the credit card data is managed on WePay served iFrames.
Tokenization through WePay’s Custom Checkout
For more information, visit: