SOC 2 Type II
Active
Annual audit covering five trust service criteria. Most recent report: March 2026.
Compliance
Regulated, audited, certified.
Payminty holds payment institution licenses in 23+ countries. Independent audits each year. Full regulator list and audit reports below.
Certifications and standards
Payminty infrastructure is audited annually by independent third parties.
PCI DSS Level 1
Active
Highest tier of certification for processing credit card data.
ISO 27001
Active
International standard for information security management systems.
GDPR compliant
EU operations
European General Data Protection Regulation. DPO appointed, impact assessments completed.
CCPA compliant
US operations
California Consumer Privacy Act. Opt-out mechanisms active.
KVKK compliant
Türkiye operations
Personal Data Protection Law. VERBİS registered, ready for KVKK Board audit.
Legal and operational presence
Countries where Payminty Inc. and its local subsidiaries are regulated.
Türkiye
Payminty Türkiye A.Ş.
BDDK Payment Institution License · No: TR-PSP-2025-104
European Union
Payminty Europe OÜ (Estonia)
EMI license · MiCA registered · SEPA Instant member
United Kingdom
Payminty UK Ltd.
FCA Authorised · No: 945812 · Faster Payments member
United States
Payminty USA Inc. (Delaware)
MSB FinCEN registered · Money Transmitter — 38 states
United Arab Emirates
Payminty MENA FZCO (DIFC)
DFSA — Category 4 license · CBUAE registered PSP
Singapore
Payminty SG Pte. Ltd.
MAS Major Payment Institution license
Independent audit
Annual SOC 2 Type II audit by PwC. PCI DSS Level 1 assessment annually by Trustwave. ISO 27001 certification by BSI on 3-year cycles.
Report request
Partner companies and enterprise customers can request SOC 2, PCI ROC, and ISO 27001 statement of applicability reports under NDA.
compliance@payminty.app