Protecting your privacy and security at Squarespace

Resources to help explain PCI-DSS compliance and TLS protocols and how they relate to Squarespace Commerce.

Last updated July 9, 2024

Squarespace uses the most up-to-date security protocols to keep your account secure, and maintain compliance with the Payment Card Industry Data Security Standard (PCI-DSS).

PCI-DSS compliance is a security standard for companies and organizations that handle payment information from consumers. Squarespace Payments and all of Squarespace’s payment processors, Stripe, PayPal, and Square are compliant with the applicable PCI standards.

Note

To ensure a secure connection to your Squarespace site, set your operating system and browsers to update automatically, so you’re always using the latest available version of a supported browser. Some features on your site, like checkout or images, might not work or load correctly on older browsers.

What is PCI-DSS Compliance?

PCI-DSS is a framework for developing a robust payment card data security process—including prevention, detection and appropriate reaction to security incidents. To learn more, visit the PCI Council’s website.

Is Squarespace Commerce compliant?

Yes. All of Squarespace's built-in Commerce tools are compliant.

PCI-DSS guidelines for TLS

Squarespace uses Transport Layer Security (TLS), a popular security protocol designed to help ensure privacy and data security for communications over the internet.

The PCI Council currently requires companies that use TLS to use version 1.2 for all HTTPS connections. Squarespace complies with this requirement.

I have other questions about PCI-DSS.

For general PCI-DSS compliance questions, please contact your payment processor.

Footer Image
  • Get help from our community

  • Get help from our community on advanced customizations.

  • Hire a Squarespace Expert

  • Stand out online with the help of an experienced designer or developer.

Protecting your privacy and security at Squarespace