The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.

The PCI DSS is administered and managed by the PCI SSC (, an independent body that was created by the five major payment card brands.

Matomo Marketplace payments

Matomo Marketplace is PCI DSS compliant which means that our security policies, and procedures meet the requisite standard. Matomo does not store any credit card information but uses Braintree as our payment data processors. Braintree is a validated Level 1 PCI DSS compliant service provider: learn more on Braintree website.

We also perform an annual PCI DSS assessment. Please contact us to get our latest certificate.

Matomo Cloud payments

We use Paddle our merchant of record who is PCI DSS SAQ A Compliant.

Previous FAQ: Is Matomo Analytics LOPDGDD and LSSI compliant?