Skip Main Navigation

Is Eventbrite PCI compliant?

Eventbrite LogoUpdated by Antwonne D

Category: Terms and policies

The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that all companies that process, store, or transmit credit card information maintain a secure environment. Eventbrite complies with PCI-DSS 3.2.1 Level 1 as both a Merchant and a Service Provider. To learn more about PCI compliance, review the PCI Compliance Guide. Also, check out the Eventbrite eblink{Security & Safety Guide=>} for more information.

NOTE: We do not fill out privacy or security questionnaires upon request. All information regarding compliance can be found via the links below and in our various eblink{Legal Terms=>}.

<ul><li>We are registered with both <a href="" target="_self">Visa</a> and <a href="" target="_self">MasterCard</a> as a PCI-compliant Service Provider.</li><li>We are regularly audited by a <a href="" target="_self">Qualified Security Assessor (Coalfire, Inc.)</a>.</li><li>We pass internal and external application and network penetration testing performed by independent security firms.</li><li>We are scanned at least monthly.</li><li>Our <a href="" target="_self">PCI Attestation of Compliance (AOC)</a> and Quarterly Scan Attestation of Compliance are both available to download <a href="" target="_self">here</a>.</li><li>Eventbrite employs a cross-functional team responsible for oversight of PCI Compliance.</li></ul> <p class="text-small l-pad-vert-2 l-pad-hor-2 card l-mar-top-2"><b>NOTE:</b> Eventbrite maintains a comprehensive privacy program, and we have a full-time legal and security team focused solely on protecting the privacy and security of our users. To learn more, take a look at the <a href="" target="_self">Eventbrite Developer Terms</a>, <a href="" target="_self">Security &amp; Safety Guide</a>, and <a href="" target="_self">Privacy Policy</a>.</p>

Still have questions? Contact us.