Related Questions
  • Help Center
  • Product Queries
  • Product queries - Token Vault
  • If a merchant is PCI/DSS compliant and was saving...
    • Getting Started
    Account Activation
    Pricing
    Payments & Settlements
    Tech Queries
    Account Management
    Product Queries
    Product queries - Payment Gateway
    Product queries - Payment Links
    Product queries - Payment Forms
    Product queries - Easy Split
    Product queries - Subscriptions
    Product queries - Router
    Product queries - Payouts
    Product queries - Auto Collect
    Product queries - Cashgram
    Product queries - Global Payouts
    Product queries - Bank Account Verification
    Product queries - PAN Verification
    Product queries - Banking As A Service
    Product queries - Token Vault
    Product queries - GSTIN Verification
    Product queries - Aadhaar Verification
    Product queries - softPOS
    Product queries - Reports
    Customers
    Orders and Delivery
    Payment Related
    Refunds
    Disputes and Chargeback
    Report a fraud
    Partners
    Terms & Conditions

    If a merchant is PCI/DSS compliant and was saving cards on their own server how can they meet RBI’s compliance requirement?

    1Answer

    If you are a merchant who already PCI/DSS compliant, here is what you need to do to stay RBI compliant,

    • Merchants who were saving the card number on their own servers, will also have to either integrate with individual card schemes and become a token requestor themselves or integrate with Token Vault where Cashfree Payments will be a token requestor on merchant’s behalf.
    • PCI/DSS compliant merchants have to delete the already saved cards with them as RBI does not allow bulk tokenization of cards.
    Did this answer your question?
    Thanks for the feedback!
    Thanks for the feedback!
    ...