Is Stormpath PCI compliant?

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that ALL companies that accept, process, store or transmit credit card information maintain a secure environment.

Stormpath is not PCI compliant, however, you can use Stormpath for authentication and user management and another 3rd party PCI compliant partner, such as Stripe. As an example, check out how to add billing to your application using Stormpath, Stripe, and Node.js here.


Have more questions? Submit a request



Please sign in to leave a comment.