PCI compliance is a set of security measures that organizations must follow to protect cardholder data when accepting, transmitting, or storing it. Splitit is currently a validated Level 1 PCI DSS Compliant Service Provider.
Due to this requirement, we do not delete plan transactional processing data, except in accordance with our record retention requirements and applicable law. Customers who have an active or closed installment plan will remain in our system; any user can choose to restrict their data, but it cannot be deleted due to our compliance requirements.
For additional information please see: https://www.splitit.com/legals/pci-dss-certification/ and our privacy policies here: https://www.splitit.com/legals/splitit-privacy-policy/english/ and UK and EU residents: https://www.splitit.com/legals/splitit-privacy-policy/uk-and-europe-english/