Your Trust in Our Security is Important

Security compliance matters to your customers, and it will certainly matter to your business. By partnering with eWAY, you are outsourcing your payments to a partner with the highest level of PCI-DSS, with the same levels of data security as the largest banks in the world.

The Merchant Trust Initiative

The frequency and sophistication of cybersecurity attacks on businesses like yours are increasing each year. Small to medium businesses are the most vulnerable to attacks and are usually the least equipped to deal with them, threatening their very survival.

To improve cybersecurity measures we have launched the Merchant Trust Initiative. For more information, visit

PCI DSS Self-Assessment Questionnaires (SAQs)

How to quickly & easily become PCI Compliant

The easiest and fastest way to become closer to compliance is to use eWAY’s solutions as we’re Level 1 PCI DSS Compliant. You can integrate to hosted solutions (such as Xero or Shopify), or in just a few simple steps integrate to eWAY’s iFrame solution.

To understand how you can fulfill your obligations as a merchant to becoming compliant, as a part of the Merchant Trust Initiative, you have access to Trustwave TrustKeeper, a tool that simplifies the process for you to meet the obligations of PCI DSS compliance. Through the portal, you also have access to numerous other tools and resources, providing you with information on cybersecurity and data protection to help you minimise your risks.

PCI DSS SAQ Forms Required

eWAY Rapid APIs
  • Responsive Shared Page – SAQ A (14 requirements)
  • Rapid iFrame – SAQ A (14 requirements)
  • Transparent Redirect – SAQ A – EP (140 requirements)
  • Client Side Encryption – SAQ A – EP (140 requirements)
  • Direct Payments – SAQ D (326 requirements)
  • MOTO within MYeWAY – SAQ C – VT (73 requirements)
  • PayNow Button – SAQ A (14 requirements)
  • Secure Fields – SAQ A (14 requirements)
  • Secure Panel – SAQ A (14 requirements)


Legacy APIs
  • Direct XML – SAQ D (326 requirements)
  • Direct XML Stored – SAQ D (326 requirements)
  • Direct PreAuth XML – SAQ D (326 requirements)
  • Shared Payments – SAQ A (14 requirements)
  • Managed Payments Token Web Service – SAQ D (326 requirements)
  • Rebill XML API – SAQ D (326 requirements)
  • Rebill Web Service – SAQ D (326 requirements)

Seem confusing? That’s OK, eWAY has the team available to help you every step of the way. ​

Ready to get started?

With 24/7 support, over 250 integrations and 20+ years experience - the team at eWAY are here to provide you with the leading all-in-one payments solution.