Trust & compliance

Compliance & Certifications

We meet the highest global standards so you can focus on your business with confidence.

PCI-DSS Level 1

The highest level of Payment Card Industry Data Security Standard compliance. Mandatory annual audits by a Qualified Security Assessor (QSA).

ISO 27001

International standard for information security management systems (ISMS). Covers risk assessment, controls, and continuous improvement.

SOC 2 Type II

Independent audit covering security, availability, processing integrity, confidentiality, and privacy over a 12-month period.

GDPR

Full compliance with the EU General Data Protection Regulation. Data processing agreements available for all merchants.

CCPA

Compliant with the California Consumer Privacy Act. We respect data privacy rights for California residents.

Security Practices

Annual third-party security audits
Continuous penetration testing
Real-time vulnerability monitoring
Employee security training programs
Incident response plan & runbooks
Data minimization practices
Right to erasure (data deletion)
Data processing agreements (DPA) available
Sub-processor transparency list
Regular compliance reporting

Need compliance documentation?

Request our audit reports, DPAs, or sub-processor list for your own compliance needs.

Contact@flujipay.com