fbpx

888.661.8804

Menu

MobileCause is
PCI Level 1 Certified

MobileCause is
PCI Level 1 Certified

The Industry’s Highest Standard for Security and Privacy

teal line

The safety and security of your donors’ payment information is our highest priority at MobileCause. MobileCause is proud to have received certification as a Payment Card Industry, Data Security Standard (PCI DSS) Level 1 service provider. Many companies claim to be PCI compliant, but only companies that pass a full-scale audit by a qualified security assessor (QSA) can be PCI DSS Certified

All MobileCause payment and user information is 100% PCI certified and guarded by the highest industry standards. We are also on the Visa Global Registry of Service Providers, the payment industry’s designated source for registered and compliant companies.

The safety and security of your donors’ payment information is our highest priority at MobileCause. MobileCause is proud to have received certification as a Payment Card Industry, Data Security Standard (PCI DSS) Level 1 service provider. Many companies claim to be PCI compliant, but only companies that pass a full-scale audit by a qualified security assessor (QSA) can be PCI DSS Certified

All MobileCause payment and user information is 100% PCI certified and guarded by the highest industry standards. We are also on the Visa Global Registry of Service Providers, the payment industry’s designated source for registered and compliant companies.

MobileCause customers can be confident knowing their donors’ card holder data
is protected by the industry’s highest standards through our PCI LEVEL 1 CERTIFICATION.

MobileCause customers can be confident knowing their donors’ card holder data is protected by the industry’s highest standards through our PCI LEVEL 1 CERTIFICATION.

Why PCI Certification is Significantly More Important than being Compliant When Providing Cybersecurity Benefits to Nonprofit Organizations

MobileCause is a Certified PCI DSS Level 1 service provider. We are not simply claiming to be PCI compliant like most fundraising software providers; we have been audited by an independent, professional organization and certified that all proper controls and security measures are in place to protect your donors. This means your organization will benefit from:

  • Processing online donations, event registrations, ticket and merchandise sales, auctions and more with the confidence that MobileCause is helping securely store and handle all corresponding data in accordance with PCI DSS Certification standards.
  • Securing donors’ trust that you are using industry best practices to keep your donors’ personal information safe. If there is any reason for a donor to doubt the security of the personal information held by a nonprofit, that doubt could potentially cost your organization a donation. 
  • Avoiding the possibility of significant fines, ensuing lawsuits, and financial investments for cleanup and/or new security technology if you are found to be incompliant.
  • Maintaining your brand’s integrity and avoiding a tarnished reputation from a data breach

What is PCI DSS?

teal line

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards governing online payments to prevent credit card fraud and security breaches involving cardholder data. PCI DSS is designed to ensure that ALL companies that accept, process, store or transmit credit card information maintain a secure environment. The PCI DSS applies to ANY organization, regardless of size or number of transactions, that accepts, transmits or stores any cardholder data.

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards governing online payments to prevent credit card fraud and security breaches involving cardholder data. PCI DSS is designed to ensure that ALL companies that accept, process, store or transmit credit card information maintain a secure environment. The PCI DSS applies to ANY organization, regardless of size or number of transactions, that accepts, transmits or stores any cardholder data.

PCI Compliance vs. PCI Certification

teal line

PCI compliance means a company claims to have taken steps to help protect Card Holder Data following the guidelines set by the PCI Council. There is no review or audit to confirm or deny their claims. 

PCI certification, on the other hand, is a rigorous and comprehensive process that involves a full-scale audit by a qualified security assessor (QSA). The QSA validates all areas of the business that come in contact with Card Holder Data to ensure proper controls and security measures are in place to protect the customer.

The PCI certification audit includes reviews of:

  • How the company’s software is developed
  • The processes in which its developers are trained
  • Technical and procedure controls

How do I know if my nonprofit needs
to worry about PCI Compliance? 

teal line

If your nonprofit engages in any of the following three activities, you need to ensure you take the proper steps to protect your donors’ information:1

  1. Conduct e-commerce on your website, such as processing donations or event registrations.
  2. Store and transfer (even to financial institutions) “personally identifiable information” about your donors and/or supporters. Common examples of personally identifiable information include: addresses, employee records, drivers’ licenses, and social security numbers.
  3. Collect information on preferences and habits of donors, patrons, volunteers, newsletter subscribers, etc.

Why is PCI Certification an important
consideration for Nonprofit Organizations?

teal line

PCI Certification is an important consideration for all nonprofits. According iATS Payments on the GuideStar by Candid blog, “If your nonprofit accepts donations, you are responsible for ensuring your organization is PCI compliant for each stage of the donation process that you are involved with.” 2

In 2016, 63% of nonprofits suffered at least one data breach.3 The threat of a data breach includes loss of reputation with donors and potentially six-figure fees to cover the cost of audits performed by the payment card industry. Fines for noncompliance vary based upon the discretion of the credit card companies and acquiring banks and can range from $5,000 to $100,000 per month for the nonprofit.4

PCI Certification is an important consideration for all nonprofits. According iATS Payments on the GuideStar by Candid blog, “If your nonprofit accepts donations, you are responsible for ensuring your organization is PCI compliant for each stage of the donation process that you are involved with.” 2

In 2016, 63% of nonprofits suffered at least one data breach.3 The threat of a data breach includes loss of reputation with donors and potentially six-figure fees to cover the cost of audits performed by the payment card industry. Fines for noncompliance vary based upon the discretion of the credit card companies and acquiring banks and can range from $5,000 to $100,000 per month for the nonprofit.4

More information on the privacy and
security of donations through MobileCause

teal line

We invite you to speak to a MobileCause fundraising consultant to further learn how MobileCause ensures your donors’ data is secured by the industry’s highest standards and helps protect  your organization from liability. 

Click here to view PCI DSS Level 1 documentation.

Click for additional information on how MobileCause is compliant.

We invite you to speak to a MobileCause fundraising consultant to further learn how MobileCause ensures your donors’ data is secured by the industry’s highest standards and helps protect  your organization from liability.

Click here to view PCI DSS Level 1 documentation.

Click for additional information on how MobileCause is compliant.

  1.  “Cybersecurity for Nonprofits”, National Council of Nonprofits
  2.  “How PCI Compliance Reduces Data Breach Risks”, GuideStar by Candid blog, April 11, 2018
  3.  “How PCI Compliance Reduces Data Breach Risks”, GuideStar by Candid blog, April 11, 2018
  4. How Can Your PCI Compliance Efforts Ultimately Save Your Business Money?”, PCI ComplianceGuide.org, March 3, 2016

Get a Personalized Demo Today!

See why thousands of nonprofits trust MobileCause to create engaging experiences for their donors. Raise more money, scale your mission and connect with your donors in more meaningful ways.

Request Demo

Pin It on Pinterest

Share This