Is Wajub PCI DSS certified?

Security & Trust

Security at the heart

From encryption to data isolation, every layer of Wajub is built with security as its foundation. We follow PCI DSS, SOC 2, and ISO 27001 requirements.

AES-256 EncryptionTLS 1.3SOC 2 Type II

Trust Standards

We apply the highest security standards.

AES-256 Encryption

All data at rest is encrypted.

TLS 1.3

Encrypted communications in transit.

Data Isolation

Data isolated per customer and environment.

Key Management

Hashed and revocable API keys.

Continuous Audit

24/7 monitoring of our infrastructure.

Access Control

Mandatory MFA and RBAC.

Our certifications

Wajub complies with African and European regulatory frameworks.

PCI DSS

Requirements applied, certification in progress

SOC 2 Type II

In progress (Q4 2026)

GDPR

Compliant

Best practices

Security built in at every step.

End-to-end Encryption

From your server to our providers.

Code Review

Every change is reviewed by two peers.

Penetration Testing

Regular campaigns by third parties.

Continuous Updates

Security monitoring and patches within 24h.

Bug Bounty

Reward program for researchers.

GDPR Compliance

DPA, access rights, portability.

Your security is our priority.

Encryption, isolation, audit. Security built into every layer of the platform.

Start in sandbox Contact security

Frequently asked questions

We follow PCI DSS, SOC 2, and ISO 27001 requirements. We rigorously adhere to payment industry security standards without holding official certifications at this stage. All data is encrypted (AES-256 at rest, TLS 1.3 in transit).