1 of 20
2 of 20
3 of 20
4 of 20
5 of 20
6 of 20
7 of 20
8 of 20
9 of 20
10 of 20
11 of 20
12 of 20
13 of 20
14 of 20
15 of 20
16 of 20
17 of 20
18 of 20
19 of 20
20 of 20

site

doc

blog

success stories

PCI Compliance

As part of our ongoing compliance efforts, we are always improving the internal security controls we apply to our customers' data, applications and sites running on our edge platform. This is why Azion has renewed its PCI-DSS certification as a PCI DSS 4.0 Level 1 service provider for the new version released in 2022, demonstrating our commitment to ensuring that the transmission and processing of cardholder data is secure for both our customers and those who interact with our services.

What is PCI?
What is PCI?

PCI DSS (Payment Card Industry Data Security Standard) is a certification issued by the PCI Security Standards Council that defines the international security requirements necessary for companies in the payment card sector and their service providers to operate reliably, adequately protecting both their technology systems and their customers’ data and operations.

Created and governed by major credit card companies worldwide, PCI-DSS is required for any business that handles credit card transactions.

So whether you have an online store or are otherwise adopting PCI standards as best practice, you must undergo a thorough annual process responding to 12 requirements, encompassing 250+ individual controls, that check how the company handles security, privacy, and availability in its systems. Businesses that process a high level of transactions must meet a higher level of PCI compliance, requiring more frequent network scans and external audits.

Although PCI certification is required for e-commerce, all digital businesses can benefit from using a PCI-certified provider. By providing a higher standard of security, PCI compliance reduces the likelihood of data breaches, elevates user trust, and enables industry-specific use cases, such as securing patient data for healthcare companies or enabling online tuition payments for educational groups.

What this means for our customers

As a PCI-DSS 4.0 Level 1 Service Provider, Azion keeps your valuable data secure across all edge locations, without compromising your site’s performance. As a result, you can:

As a result, you can:

  • Simplify PCI audits
  • Maintain the highest level of compliance
  • Enhance user confidence
  • Process payment credentials or other sensitive data
  • Keep your checkout process fast and performant

Frequently asked questions

What compliance are we achieving?

Azion has been attested as a PCI DSS 4.0 Level 1 Service Provider.

Who performs the independent audit of Azion for its PCI compliance?

Azion contracted Cipher Security, a Qualified Security Assessor (QSA).

Which regions and products are covered?

Azion's PCI compliance extends across the entire Edge Platform, which includes the Edge Application product and its modules (Application Acceleration, Edge Caching, Edge Functions, and Load Balancer) and the Edge Firewall product and its modules (DDoS Protection, Network Layer Protection, Web Application Firewall - WAF, and Origin Shield), covering all regions where it is deployed. Presently we are deployed in six continents.

How long is Azion’s Attestation of Compliance (AOC) valid?

Azion’s current AOC was issued on May 5, 2023 and is valid for one year.

How can I get a copy of Azion’s Attestation of Compliance (AOC)?

Customers with Enterprise or Mission Critical Service Plans can reach out to their Account Executive to request an AOC. An NDA is required.