search

expo / stripe-expo

Use the Stripe HTTP API in Expo without the DOM, node, or native deps
MIT License
159 stars 23 forks source link

PCI compliance #24

Open kashi-halma opened 6 years ago

kashi-halma commented 6 years ago

Is this package PCI compliant?

calebdre commented 5 years ago

From Stripe's documentation:

We strongly discourage passing card information directly to Stripe’s API as it means your integration is directly handling card information.

So since this library takes card information as an argument, its clients are directly handling card information, unfortunately making this library not PCI compliant.

AlexGrafe commented 4 years ago

Just as a note, read Stripe's information on PCI compliance depending on integration method: https://stripe.com/docs/security/guide#validating-pci-compliance