Loading...

Contact Sales

LET'S TALK

Our sales team is standing by to answer any question.

Certifications & Compliance

HOW WE KEEP YOU SAFE

Audits
  • Audits
  • PCI DSS
  • Data storage

Bambora goes through numerous security audits, including but not limited to PCI, SOC 1, and SOC 2. Bambora is also audited on an ongoing, annual basis by our partnered banks and card networks.

PCI Compliance

All companies that process, store, or transmit credit card information must maintain a secure environment. Bambora is Level 1 PCI-Certified (the highest level).

What are PCI standards?
All companies that process, store, or transmit credit card information must maintain a secure environment. The standards were created by Amex, Discover, MasterCard, and Visa to protect businesses and consumers alike.

This includes all:
-Merchants
-Vendors
-Software providers

How are the standards upheld?

1) Annual audits
Bambora goes through numerous security audits, including but not limited to PCI, SOC 1, and SOC 2. Bambora is also audited on an ongoing, annual basis by our partnered banks and card schemes.

2) Merchant’s assessments
If you acquire your merchant account through Bambora, we will ask you to complete a PCI DSS self-assessment questionnaire and, if required, a network scan.

Bambora North America data centres are located in Canada; no payment data is stored anywhere in the United States.

All of Bambora North America’s data practices meet Canadian privacy legislation PIPEDA, “The Personal Information Protection and Electronic Documents Act.” PIPEDA has been deemed adequate to EU privacy law.

With new privacy legislation coming to Europe in 2018, Bambora will continue to be a leader in privacy security globally as the new laws come into place.


FAQs


Is Bambora PCI compliant?

Yes, we are Level 1, the highest level.


What does PCI stand for?

Payment Card Industry Data Security Standards, the full abbreviation is PCI DSS.


Do I need to sign up for PCI compliance?

To become a Bambora merchant, you will need to complete a PCI DSS self-assessment questionnaire upon sign-up.


Where can I view the full PCI standards?

You can view the full PCI standards on the Official PCI Security Standards website.