> ## Documentation Index
> Fetch the complete documentation index at: https://docs.pesaswap.io/llms.txt
> Use this file to discover all available pages before exploring further.

# PCI Compliance

A brief summary of PCI compliance for Pesaswap Cloud users

Payment Card Industry Data Security Standard (PCI DSS) compliance ensures that sensitive cardholder data is securely processed, stored, and transmitted.

**Pesaswap Cloud provides out-of-the-box PCI DSS Level 1 compliance**—the highest level of certification—so you can handle payments securely without worrying about card storage or compliance complexities yourself.

## Key Features of PCI Compliance on Pesaswap Cloud

**PCI DSS Level 1 Certification:** Pesaswap is certified for PCI DSS 3.2.1 Level 1, ensuring robust security measures for card and other payment data.

**Annual Audits:** Infrastructure and applications are audited annually by a PCI-approved scanning vendor to maintain compliance.

**Tokenization for Secure Card Handling:** Pesaswap tokenizes and stores customer card details in its cloud vault, reducing the need for merchants to store sensitive data.

## Enabling Raw Card Acceptance with Payment Processors

To process raw card data securely through Pesaswap:

### Processor Configuration

Many payment processors disable raw card acceptance by default. To enable it:

* Share Pesaswap's PCI Attestation of Compliance (AOC) with your processor's support team
* Request them to enable raw card processing for your merchant account

### Stripe Integration Update

* Stripe no longer allows raw card acceptance via its Merchant Dashboard
* If required, share the PCI DSS compliance certificate of Pesaswap or the third-party service provider managing raw card data with Stripe support

### Accessing the PCI AOC Document

* Pesaswap Cloud users can download the PCI AOC from the Compliance section under settings in the Pesaswap Dashboard
* Alternatively, email **[info@Pesaswap.in](mailto:info@Pesaswap.in)** for assistance

## Why Choose Pesaswap for PCI Compliance?

* Simplified compliance management with automatic tokenization and secure storage
* Global security standards maintained across all integrations
* Reduced complexity and liability for merchants in handling sensitive card data
