Compliance engineered for the Cloud

Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

PCI DSS

The Payment Card Industry Data Security Standards (PCI DSS) is a proprietary information security standard designed to ensure that companies processing, storing or transmitting payment card information maintain a secure environment. The PCI DSS applies to credit cards from the major card brands, including Visa, MasterCard, American Express, Discover, and JCB. A third-party PCI Qualified Security Assessor (QSA) assesses company systems and processes on an annual basis and issues an Attestation of Compliance (AOC). Additional information can be found at https://www.pcisecuritystandards.org

Applicable documents by service

Filter this list

Sort by Updated On
Name PCI ASV Network Scan - Core	Updated On 2023-09-08	Infrastructure First party, AWS	Services B2B Commerce Salesforce Services and Additional Services
Name PCI ASV Network Scan - Heroku	Updated On 2023-09-08	Infrastructure AWS	Services Heroku
Name PCI ASV Network Scan - Hyperforce AMER (US East 1)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce AMER (US West 1)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce APAC (North East - Japan)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce APAC (North East - S. Korea)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce APAC (South East - Australia)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce APAC (South East - Singapore)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce APAC (South - India)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce Canada (CA Central 1)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce EMEA (France)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce EMEA (Germany)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce EMEA (UK)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - Hyperforce LACA (Brazil)	Updated On 2023-09-08	Infrastructure Hyperforce	Services B2B Commerce Data Cloud Salesforce Services and Additional Services
Name PCI ASV Network Scan - MuleSoft	Updated On 2023-09-08	Infrastructure AWS	Services MuleSoft
Name PCI ASV Network Scan - Salesforce.org Payment Services	Updated On 2023-09-08	Infrastructure AWS	Services Salesforce Services and Additional Services
Name PCI Responsibility Matrix - MuleSoft	Updated On 2023-08-14	Infrastructure AWS	Services MuleSoft
Name PCI Attestation of Compliance (AoC) - Heroku	Updated On 2023-08-01	Infrastructure AWS	Services Heroku
Name PCI Responsibility Matrix - Heroku	Updated On 2023-08-01	Infrastructure AWS	Services Heroku
Name PCI Attestation of Compliance (AoC) - Salesforce.org Payment Services	Updated On 2023-07-31	Infrastructure First party, AWS	Services Salesforce Services and Additional Services
Name PCI Responsibility Matrix - Salesforce.org Payment Services	Updated On 2023-07-31	Infrastructure First party, AWS	Services Salesforce Services and Additional Services
Name PCI Attestation of Compliance (AoC) - Commerce Cloud	Updated On 2023-07-17	Infrastructure First party	Services B2C Commerce / Commerce Cloud
Name PCI Attestation of Compliance (AoC) - Salesforce Services	Updated On 2023-07-17	Infrastructure First party, AWS	Services B2B Commerce Salesforce Services and Additional Services
Name PCI Responsibility Matrix - Commerce Cloud	Updated On 2023-07-17	Infrastructure First party	Services B2C Commerce / Commerce Cloud
Name PCI Responsibility Matrix - Salesforce Services	Updated On 2023-07-17	Infrastructure First party, AWS	Services B2B Commerce Salesforce Services and Additional Services
Name PCI Attestation of Compliance (AoC) - Salesforce Services on Hyperforce	Updated On 2023-02-24	Infrastructure Hyperforce	Services B2B Commerce Salesforce Services and Additional Services
Name PCI Responsibility Matrix - Salesforce Services on Hyperforce	Updated On 2023-02-24	Infrastructure Hyperforce	Services B2B Commerce Salesforce Services and Additional Services
Name PCI Attestation of Compliance (AoC) - MuleSoft	Updated On 2022-12-29	Infrastructure AWS	Services MuleSoft
Name PCI Attestation of Compliance (AoC) - Government Cloud Plus	Updated On 2021-02-01	Infrastructure AWS	Services Salesforce Government Cloud Plus