Compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) helps to alleviate security vulnerabilities and protect cardholder data. The PCI standard is required of any enterprise handling credit card and related authentication data or whose services could impact the security of the cardholder data environment. GitLab, as the most comprehensive AI-powered DevSecOps platform, provides the tools and resources to support our customers’ security posture, including those handling PCI-relevant data.
GitLab is pleased to announce the successful achievement of a PCI DSS Attestation of Compliance (AoC) as a Level 1 Service Provider. The AoC comes after an independent Qualified Security Assessor-led validation of our alignment to the PCI DSS. The attestation, in addition to GitLab’s broader compliance credentials, demonstrates the dedication to our mission of being the leading example in security, innovation, and transparency in our information security practices.
Please visit GitLab’s Trust Center to view our AoC as well as details on shared responsibilities when relying on our attestation. Also, check out our PCI compliance page, which explains how GitLab can support your compliance efforts.
