Salesforce PCI Attestation of Compliance
|Knowledge Article Number||000175615|
For the services branded as Force.com, Site.com, Database.com, Sales Cloud, Service Cloud, Communities, Analytics Cloud, Chatter, Work.com, and Industry Clouds (Financial Services Cloud and Health Cloud Services), Salesforce has obtained a signed Payment Card Industry Attestation of Compliance (“AoC”). This attestation demonstrates Level 1 compliance with the Payment Card Industry Data Security Standard ("PCI DSS") version 3.1, as formulated by the Payment Card Industry Security Standards Council. In order to benefit from Salesforce’s PCI AoC, customers must use either "Platform Encryption" for supported fields types and file attachments or “Classic Encryption” for custom encrypted fields technology available in the Services.
The document described in this article contains confidential information related to Salesforce and its affiliates. By accessing or viewing any files described in this article you agree that the document contains confidential information related to Salesforce and subject to the help.salesforce.com Confidentiality Notice and Confidentiality Terms. Please review the help.salesforce.com Confidentiality Notice and Confidentiality Terms before requesting or accessing the file.
Customers can request a copy Salesforce's PCI Attestation of Compliance via their Salesforce Account Team point of contact.