Payment Card Industry (PCI) Level 1
PCI regulates the security and business processes of service providers that store, process or transmits consumer credit card data. A Level 1 certification is the most secure ranking a processor can receive and PayLease undergoes annual on-site audits to maintain this certification. This includes thorough audits of our data center and our data processing procedures. Our data center has been certified PCI compliant and all data processing is protected by industry standard hardware and software. Data is monitored on a 24x7 basis. As part of PCI Standards, PayLease does not store credit card information by employing tokenizing methods for data processing, and complies with all applicable banking regulations.
PayLease has been certified SSAE 16 compliant which is an internationally recognized third party assurance audit designed for service organizations. It stands for Statement on Standards for Attestation Engagements (SSAE ) No.16, and is regulated by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA). The SSAE 16 audit confirms that PayLease maintains a secure, stable and compliant infrastructure that satisfies requirements of the Sarbanes-Oxley Act. As of June 15, 2011 the SSAE 16 audit officially replaced SAS 70 as the audit standard for payment processors.