PCI DSS compliance
Bittylicious has been confirmed to be operating in compliance with PCI DSS standards and will continue to be in compliance as long as we take credit card payments.
The Payment Card Industry Data Security Standard is designed to increase controls around credit cardholder data to reduce credit card fraud. Bittylicious processes Visa and Master credit card transactions and becoming compliant with these standards is becoming more important.
Bittylicious does not store cardholder information but merely captures it and passes it on to payment processors. This significantly decreases the available attack area, meaning that cardholder data is much more likely to be secure. Scans are performed on an quarterly basis and any issues are resolved as soon as possible.