PCIReference Center

Let BridgePay help maintain your compliance

BridgePay is dedicated to maintaining a high level of security and compliance to protect sensitive data.

“The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect account data.”     – PCI DSS

As a service provider that stores, processes and/or transmits transactions, BridgePay is certified as a Level 1 Service Provider. We have and continually comply with PCI DSS requirements. Compliance is verified annually through a leading third party PCI QSA firm in the industry, A-LIGN.

BridgePay also develops and maintains payment applications supporting card present transactions via card swipes or keyed into a terminal. PayGuardian is certified according the Payment Application Data Security Standard (PA DSS). Compliance is verified through a leading third party PA QSA firm in the industry, Security Metrics.

Learn more about BridgePay and PCI by downloading our brief summary.

 

  • BridgePay tokenizes all transactions in our gateway

  • Enable our EMV technology for secure payment processing

  • Using point to point encryption ensures the secure transmission at the time of swipe

  • Secure ecomm payments using our hosted payment page

  • Reduce fraud using reCAPTCHA on an ecomm site

PCI DSS Resource Library

BridgePay - PCI DSS Attestation of Compliance (AOC)
T-Gate - PCI DSS Attestation of Compliance (AOC)
VISA PCI DSS Validated Service Providers
PCI Council
PCI Council Document Library

PA DSS Resources

PCI Council – Applications Eligible for PA-DSS Validation
PCI Council – PA DSS and Mobile Applications
PCI Council - PA DSS Validated Applications

What is PCI Compliance?

The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect account data. – PCI DSS

How does is PCI DSS apply to me?

PCI DSS applies to all entities involved in payment card processing-including merchants, processors, acquirers, issuers, and service providers. PCI DSS also applies to all other entities that store, process, or transmit cardholder data and/or sensitive authentication data. – PCI DSS

How does BridgePay maintain its PCI DSS Compliance?

As a service provider that stores, processes and/or transmits over 300,000 transactions per year, BridgePay is certified as a Level 1 Service Provider. We have and continually comply with all PCI DSS requirements. Compliance is verified annually through a leading third party PCI QSA firm in the industry, A-LIGN.

 

 

BridgePay’s PayGuardian payment application supports card present transactions via card swipes or manual key entry into a terminal. PayGuardian is certified according the Payment Application Data Security Standard (PA DSS). Compliance is verified through a leading third party PA QSA firm in the industry, Security Metrics.

 

 

What is PA DSS?

The PCI Payment Application Data Security Standard (PA DSS) Requirements and Security Assessment Procedures define security requirements and assessment procedures for software vendors of payment applications.- PCI DSS

Am I compliant?

In order to maintain compliance, all PA DSS applications must be implemented in a PCI compliant environment.