Support » Plugin: Gravity Forms + Stripe » PCI Compliance

  • Resolved mquinn625

    (@mquinn625)


    Hello.

    When utilizing your plugin to communicate with Stripe payments, does my website automatically inherit your PCI compliance?

    Or, do I need to separately go through the process of ensuring compliance on my side? From what I understand, anytime that a customer inputs a card number into my site, whether it is stored or not, compliance is necessary.

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor gravity+

    (@gravityplus)

    This plugin uses the required Stripe JS library and makes sure the credit card data never hits your server. From there, Stripe takes over and here’s their documentation on PCI compliance:

    https://stripe.com/docs/security

    Thank you for the response!

    When using Stripe JS, it looks like that falls under the heading of SAQ A-EP. From what you understand, that doesn’t require us to take any further action? The reason I need to know is because we are using on a site that is frequently audited.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘PCI Compliance’ is closed to new replies.