Press Releases

Recurly Achieves Level 1 Payment Card Industry (PCI-DSS) Security Compliance

Recurly Subscription Billing Service Provides Enterprise-Class Security To Subscription-based Web, Mobile and SaaS businesses

San Francisco, CA – January, 19th, 2011—Recurly, the leading subscription billing services provider for developers, announced today that it has achieved confirmation of its status as a PCI Level 1 secure service. Web, Mobile, SaaS and Publishing companies can now outsource their recurring billing management to Recurly without having to invest heavily in their own infrastructure to ensure their customers the highest standard of excellence for payment data security.

PCI-DSS is a comprehensive payment card security standard that evaluates payment account data security by assessing a firm’s network architecture, software design, security policies, procedures and protective practices. The PCI requirements were developed by the PCI Security Standards Council--which includes American Express, Discover, JCB International, MasterCard and Visa--to help facilitate broad adoption of data security best practices worldwide.

To achieve a Validated Level 1 Service Provider Status, Recurly chose Trustwave to validate compliance with PCI-DSS for service providers. The Level 1 requirement applies to any provider who stores, processes or transmits more than 300,000 transactions annually.

"This is far more important than just an accreditation milestone for our company" said Isaac Hall, CEO of Recurly. "Maintaining a secure service on behalf of our customers is one of the core values of our company. It is specifically what allows us to give our customers the assurance that Recurly is a company they can trust to handle sensitive payment-related data on their behalf."

"Recurly understands that securing their environment starts with validating compliance with the PCI-DSS." said Robert J. McCullen, President and CEO of Trustwave. "By implementing the proper security measures, Recurly has taken the right steps toward adhering to security best practices laid out in the PCI-DSS."

About Recurly

Recurly is in the business of making subscription billing easy for businesses. Recurly can be set up in just days, and fully automates recurring billing, error-handling, dunning management, customer upgrades and downgrades and all related communications to ensure that merchants can focus on their core business rather than managing a complex billing system. Since its launch in January of 2010, Recurly has deployed subscription billing solutions for Web, SaaS, Mobile, Social and Publishing companies throughout North America and the European Union.

Recurly can be found at

About Trustwave

Trustwave is the leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today’s challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions. Trustwave has helped thousands of organizations—ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers—manage compliance and secure their network infrastructure, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit

Back To List