Skip to content
English
  • There are no suggestions because the search field is empty.

PCI compliance forms

All businesses who accept cards need to validate PCI compliance annually. Failure to do so will result in a $35 late fee.

How do I attest to my PCI compliance?

In your business dashboard, click into Settings and then PCI compliance. If your PCI compliance form is due:

  1. Download the compliance form. We prefill the information for you!
  2. Review the form carefully and make sure the information is accurate
  3. If the form is correct, click Submit to submit it.
  4. If the form is not correct, reach out to our support team for help.  

What is PCI compliance?

PCI compliance (short for Payment Card Industry Data Security Standards) is the security standard that Visa, Mastercard, and other card networks require of any business that accepts card payments. It exists to protect your customers' card information from being stolen or misused.

The good news: you're not holding card data

Titus partners with Finix, a certified payment processor, to handle all card transactions. Finix meets the highest level of PCI certification (Level 1), and card numbers are entered directly into Finix's secure payment form — they never pass through Titus's systems or yours. This means you don't need firewalls, special software, or a security team to accept cards through Titus.

Because you're not storing or handling card numbers yourself, your compliance requirement is simple: a short annual form confirming that's the case.

What you need to do

Once you're approved to accept card payments, Titus will ask you to complete a PCI Compliance Form (sometimes called an SAQ, or Self-Assessment Questionnaire). It's mostly pre-filled with your business information — you just review it and sign.

A few key details:

  • You have 90 days from approval to complete the form the first time.
  • After that, it renews every year, and you'll get reminder emails as the deadline approaches.
  • It only takes a few minutes — there's nothing technical to figure out.

What happens if you miss the deadline

If the form goes past due, a $35 monthly fee is charged for each month it stays incomplete. This is deducted from your next payout, or charged directly to the bank account on file if you have no payouts coming.

If it stays overdue for too long, your account may be deactivated, which means you'd temporarily lose the ability to accept card payments. If that happens, you can reapply, but you'd need to go through the approval process again.

Bottom line: as soon as you get the reminder email, take a couple of minutes to complete the form — it's the easiest way to avoid fees or a lapse in service.

Keeping cardholder data safe on your end

Even though Titus and Finix handle the secure processing, here are a few simple habits that keep things safe and keep your account in good standing:

  • Never write down, text, email, or store a customer's full card number yourself. Always have customers enter their card directly into the Titus payment form.
  • If a customer wants to pay over the phone, ask them to use the secure payment link instead of reading you their card number to key in manually.
  • Keep your business information current (legal name, address, phone number) so your compliance form stays accurate. If your business changes its name or EIN, let us know — that usually requires a new application rather than a simple edit.
  • Limit who on your team can access payment information in your Titus dashboard to people who actually need it.
  • Complete your compliance form promptly each time you're notified — it's the single biggest thing you control.

Questions?

If you run into any issues with your compliance form or have questions about your account status, reach out to Titus support and we'll help you sort it out.