Payhawk Trust Portal

The Electronic Money Institution (EMI) license is a financial license that enables companies to issue electronic money and companies undergo vigorous review process, including security review to be issued a license. Payhawk is EMI licensed in the European Economic Area and the United Kingdom via FCA.

Our ISO 27001 certification demonstrates our adherence to internationally recognized information security practices - we protect sensitive data from unauthorized access, misuse, disclosure, alteration, and destruction.

Our SOC2 certification signifies that we’ve implemented rigorous controls to ensure the security, availability, processing integrity, confidentiality, and privacy of customer data as defined by AICPA.

Our PCI DSS certification ensures the highest level of security for your payment card information. We follow industry best practices, providing a secure environment for processing, transmitting, and storing sensitive data

Our CE certification confirms that we have implemented crucial controls and safeguards such as secure device configurations, access controls, malware protection, patch management, and firewalls.

To ensure our systems are safe and reliable we perform at least annually an internal and external penetration testing. Here you may find our executive report from our last external pentest.

Our SOC 1 report is designed to address internal controls over financial reporting and it's focused on both business processes and information technology objectives and testing.

We handle personal data with utmost care, transparency, and respect for individual privacy rights. We prioritize data protection, secure storage, and responsible data usage in accordance with GDPR guidelines.

We are one of the early adopters of The Digital Operational Resilience Act (DORA) to ensure we have comprehensive information and communication technology risk management, incident reporting, resilience testing and threat-intelligence sharing.

The membership grants Payhawk the ability to directly issue Visa cards without relying on third parties and provides Payhawk with greater control of its payment infrastructure.