Payment Card Industry (PCI) compliance ensures that any system that accesses or stores payment data, such as credit card numbers or bank account numbers, is secure. Aria clients who build and host their own registration and user self‐service applications using Aria APIs must be concerned that any sensitive data entered by their customers is protected. Aria is certified as a PCI Level 1 Compliant system, indicating that Aria is recognized by the industry as a secure system for storing sensitive payment data.
Aria developed the Direct Post Payment Handler to secure those pages hosted by our clients, usually the "Form of Payment" page, that takes credit card and bank account numbers as inputs. Aria’s clients are able to host all pages in their Aria‐centered applications with full PCI security compliance because payment information is never seen, processed by, or stored on their systems. Credit card and bank account numbers entered on the "Form of Payment" page pass directly from the customer’s browser to Aria via encrypted post, without needing any pages hosted directly on Aria’s PCI compliant infrastructure.