MoonPay is proud to announce that we have achieved PCI DSS 4.0.1 recertification, the latest version of the Payment Card Industry Data Security Standard!
After first achieving PCI DSS 4.0 in March 2025, we have successfully maintained our compliance under the updated 4.0.1 standard. This latest version does not introduce new requirements but instead refines the original framework – clarifying intent, improving guidance, and supporting more consistent implementation.
We also continue to maintain our PCI Level 1 status, the most rigorous of the four compliance levels.
"Re-certifying under PCI DSS 4.0.1 reflects our continued commitment to security excellence," said Doug Innocenti, Chief Information Security Officer at MoonPay. "As the standard evolves, so do we — staying ahead of changes so our customers can transact with confidence."
This milestone builds on our broader security program, which includes SOC 2 Type 2, ISO 27001, ISO 27018, and ISO 27701 certifications. We remain committed to upholding the highest standards of payment security for every user on our platform.