REPAY is dedicated to maintaining a gold standard of Compliance within its industry, and as such, information security, privacy, and compliance are built into the core of all REPAY service offerings. On an annual basis, REPAY completes an annual SSAE18 SOC1 Type II audit and an annual SSAE18 SOC2 Type II audit. These audits attest to the operating effectiveness of REPAY controls applicable to financial reporting, privacy, security, system availability, processing integrity, confidentiality, and regulations applicable to REPAY services. REPAY completes an annual Payment Card Industry Data Security Standards (PCI DSS) audit to attest to compliance with information security standards. Additionally, REPAY completes an annual Nacha Rules Compliance Audit to attest to compliance with Nacha rules applicable to the handling of ACH transactions.
Please accept this statement as assurance of REPAY’s continued compliance with applicable regulations at the state and federal level. For requests of audit copies and other compliance related documentation, please contact the Compliance Department at Compliance@REPAY.com.