PCI validation for in-person payments is handled differently than for online payments. For in-person payments such as those collected through Stripe Terminal, merchants must validate using the SAQ C template. If you integrate with Stripe using additional e-commerce methods, you also need to validate your PCI compliance against these transaction types. See our guide to PCI compliance to learn more.

Details for businesses using end-to-end encryption (E2EE)

Stripe Terminal by default provides E2EE. Users (PCI Level L2 to L4) leveraging this solution have access to a pre-filled SAQ C document specific to the merchant, for those transactions processed through Terminal, directly in your Dashboard under Compliance Settings.

Details for businesses using point-to-point encryption (P2PE)

For users (PCI Level L2 to L4) who have signed up for Stripe Terminal P2PE, Stripe provides a pre-filled SAQ P2PE document for those transactions processed through Terminal directly in your Dashboard under Compliance Settings.

Read more about our point-to-point encryption (P2PE) solution.

Stripe monitors your transaction volume and will notify you ahead of time if you need to validate PCI compliance another way. You can also view your PCI requirements at any time in the Compliance Settings of the Dashboard.