Yes, Merchant Solutions is compliant with the PCI DSS. Turbify will conduct periodic audits as required to maintain compliance with the PCI DSS as a service provider.

Merchants should note that the network equipment used by Turbify does not allow third-party companies to conduct these audits, so third-party scans may return inconclusive scan results due to the security measures in place. These third-party scans are designed to help solve challenges with servers communicating card data which are not already validated as PCI compliant. Typically these scans fail because they look in the wrong places, and expect non-proprietary server software. Yahoo's checkout servers are already compliant with the PCI DSS, and we maintain a valid Attestation of Compliance.

If a scan by a third-party company has returned inconclusive scan results, please contact them to advise that your shopping cart is being hosted by Turbify which is on a PCI-compliant platform.

The information provided here by Turbify is for informational purposes only. Turbify makes no representation as to the accuracy of this information and merchants are advised to consult information from the PCI Security Standards Council for the latest updates. Please note that the payment card association security programs may change without notice at any time.