Security & Compliance

Authorize.Net is committed to safeguarding customer information and combating fraud. We operate with a mission to provide the most secure and reliable payment solutions for you and your customers.

To accomplish this, Authorize.Net dedicates significant resources toward a strong infrastructure, and adheres to both strict internal security policies and industry security initiatives.

With Authorize.Net, your customers can be confident their data is secure. We utilize industry-leading technologies and protocols, such as 128-bit Secure Sockets Layer (SSL) and we are compliant with a number of government and industry security initiatives.


Payment Card Industry Data Security Standard

The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive requirements developed by the major card brands to facilitate the adoption of consistent data security measures. Each year we renew our PCI DSS compliance. To confirm our PCI compliance, please see Visa's list of compliant service providers.


What is PCI DSS? – Video Demo

Learn more about PCI DSS and how to validate your PCI DSS

Additional Legal Compliance

Authorize.Net and its parent company CyberSource validate security measures against applicable sections of numerous federal and state laws–HIPAA, GLBA, California Senate Bill 1386 (SB1386), and many others. Our industry partners also perform regular audits.