<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=617970161699076&ev=PageView&noscript=1" /> PCI DSS Level 1 Payment Provider | VersaPay

VersaPay is a PCI Level 1 Compliant payment provider, allowing you to accept payments worry-free with the highest security on the market.

Security is our top priority

Data security is top of mind for every business, particularly for those that handle financial information. With over 10 years of experience in financial services, VersaPay understands data protection regulations and meets the highest security standards.

VersaPay’s PCI compliance, internal practices, data centers, and security monitoring are best in class to ensure your customer’s financial information is protected in a secure environment.

Third party certified security partner

VersaPay is audited annually and continually abides by comprehensive security assessments and certifications by third parties to ensure we meet the highest standards as a certified security partner.

PCI DSS Level 1 Service Provider

PCI Compliance

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.

The PCI DSS designates four levels of compliance based on transaction volume. VersaPay is certified as compliant under PCI DSS version 3.1 at Service Provider Level 1 (the highest volume of transactions – more than 6 million a year).

VersaPay completes an annual PCI DSS assessment using an approved Qualified Security Assessor (QSA). The auditor reviews VersaPay’s Information Security System, which includes validating the infrastructure, development, operations, management, support, and in-scope services.


Also known as SSAE 16 / ISAE 3402 / CSAE 3416, Service Organization Controls (SOC-Marks_2c_Web) 1 is a series of accounting reports undertaken by a service auditor to evaluate the internal controls at a service organization when they are likely to be relevant to customers’ internal control over financial reporting. VersaPay is recognized as a SOC 1 service provider.



With the huge adoption of SaaS / cloud services, a SOC 2 audit provides a definitive statement of security assurance to help IT teams evaluate managed service providers. SOC 2 was specifically designed to provide a means for service organizations to quantify their adherence to the Trust Service Principles. The Trust Service Principles (TSP) are specific controls relevant to Security, Availability, Processing Integrity, Confidentiality or Privacy. The audit is just that – an independent review of an organization’s controls, specifically designed for vendors in the service organization marketplace today.

Interested in reading more about VersaPay’s security?

What's next?

Looking for more insights, tips, and general information on accounts receivable automation? Check out the links below.

See How VersaPay Can Work For You

Do you like the sound of getting get paid faster and improving customer satisfaction? If so, you’re ready for accounts receivable automation.

Connect with us to enable a secure, self-service platform for your staff and customers to future-proof your business for the online world, before your competition does:

Or Learn More