PCI Security & Compliance

The bottom line on virtual card payments is that they are more secure than traditional credit card transactions because they’re locked to a single-use and/or exact amount.

As far as PCI DSS (Payment Card Industry Data Security Standards) and SOC (Service Organization Control) certifications are concerned, you can feel confident in CSI’s commitment to these compliance requirements and full adherence to solid security standards.

For the Record


CSI maintains PCI DSS Level 1 and SOC 1 & 2 certifications


We’re the Fort Knox of sensitive payment information.

  • We employ the highest level of encryption for data-in-transit and data-at-rest. We don’t mess around with our communication or take chances with compromising details. Funds are pre-authorized so there’s no need for forms or signatures and our tokenization of Primary Account Numbers (PAN) ensures payment information and instructions are never stored on our servers.
  • We take compliance seriously and drive security best practices companywide with ongoing policy review checkpoints. Every employee is PCI DSS trained from day one.
  • Corporate Spending Innovations appreciates the importance of obtaining an independent assessment of its operating environment. The company annually invests in annual Standards of Controls (SOC) audits. CSI has its business evaluated annually for both a SOC 1 (SSAE 16) and SOC 2 (SSAE 18) type 2 review. These reports provide valuable insight into our organization’s risks, governance, security, and internal controls. The additional rigor of a type 2 review also measures how these controls are designed for its effectiveness over time.

Please fill out the form below to download our annual PCI-DSS AOC (Attestation of Compliance)

Still have questions about security and compliance on our payments platform? Call us today and speak with one of our AP certified payments experts.