Certifications and Compliance

PCI DSS

PCI DSS is a comprehensive set of requirements created by the Payment Card Industry Security Standards Council for enhancing cardholder data security and to ensure the safe handling and storage of sensitive customer credit card information or data. Windcave Limited is a Level 1 Service Provider and is compliant to PCI DSS Version 3.2 standard.

View our PCI DSS Compliance Certificates for:

Australia

Canada

Malta

New Zealand

Singapore

Lithuania

United Kingdom

United States of America

P2PE

We have P2PE which you can view here by searching Windcave Limited.

EMVCo Certifications

Windcave Terminals are certified to the applicable EMVCo Contact and/or Contactless standards and have been granted Mastercard TQM labels.

View our certificates here

PCI DSS Compliant

PCI DSS P2PE Flow

ISO 27001 Certification

Windcave operates an Information Security Management System which complies with the requirements of ISO/IEC 27001:2013 and is presently annual certified by BSI.

SOC II Logo

SOC II Type II ( SSAE 18 / ISAE 3402)

Windcave ensures the highest Global Standards of Security Control by maintains an externally audited SOC II Type 2 report with a certified auditor, the report can be supplied on request.

SOC II Logo

ISO 9001 Certification

Design and Manufacturing of Windcave devices and terminals adheres to the highest quality standards, maintaining a ISO 9001:2015 Quality Certification from Telarc.

WCAG 2.1

The WCAG Accessibility Standard enables those with disabilities to use assistive devices to access our hosted payment pages.

Payment Express Group (trading as Windcave) - are level AA compliant with the global accessibility standard WCAG 2.1

View our WCAG 2.1 Compliance Certificate

Telarc Logo

Windcave Inc is a registered ISO/MSP of Merrick Bank, South Jordan, UT