FAQ

The Payment Card Industry (PCI) Data Security Standard was created by major credit card companies to set high technical standards to safeguard customer information.

Visa, MasterCard, American Express and other card associations mandate that merchants and service providers meet certain standards of security when they store, process and transmit cardholder data.

Is iATS PCI Compliant?

Yes, iATS Payments fully endorsees the Payment Card Industry (PCI) Data Security Standard. We are certified at Level 1, which is the highest possible level for data security standards.

Why does my organization have to be PCI compliant?

The Payment Card Industry (PCI) Data Security Standard (DSS) was created by major credit card companies to set high technical standards to safeguard customer information. PCI Compliance is mandatory for all merchants, regardless of size.

How much will my organization have to pay iATS to be PCI compliant?

Enrolling in a PCI compliance program can assist in reducing the exposure of a nonprofit from malicious theft of data and the associated reputational damage to your brand. In the unlikely event of a potential loss of data incident, compliant organizations that can demonstrate that they exercised reasonable controls to protect their donors' information are in a better position to lessen or avoid potential fines. Those that cannot demonstrate the engagement of reasonable controls are more likely to be subject to costly fines and negative media attention.

Enrolling in our program normally costs $124.75 per year but iATS is currently waiving these PCI fees for all new clients (May 9, 2020).

What if my organization is already PCI compliant?

If your organization has already achieved PCI Compliance certification through another provider, simply provide us with proof of PCI certification within 30 days of being charged the annual fee and we will request a credit on your behalf.