Security & Compliance

Security and compliance are priority

spaydy’s platform meets the highest certification standards to help reduce compliance burdens for your business and keep payments safe.



for secure connections spaydy forces HTTPS
for all services using TLS (SSL)

AES-256 encryption

All card numbers are encrypted on disk with AES-256
Decryption keys are stored on separate machines

Isolated infrastructure

spaydy’s infrastructure for storing, decrypting,
and transmitting card numbers runs in
separate hosting infrastructure, and doesn’t share
any credentials with spaydy’s primary services


PCI DSS Level 1

The Payment Card Industry
Data Security Highest Standard

PSD2 and
Strong Customer
Authentication (SCA)

Payment Services Directive (2015/2366)
of the European Parliament and
of the Council on Payment Services in the Internal Market


The System and Organisation Controls (SOC)
is a set of standards designed by the
American Institute of Certified Public Accountants (AICPA)
to create a level of confidence and trust for organisations
when they engage a third-party to provide important services