Compliance and Taxes

BlueSnap is as concerned as you are about regulatory compliance. Find out more:

3-D Secure and PSD2

3-D Secure is a global specification for card payment security. It is designed to deliver frictionless payment authentication across a range of devices, including mobile devices. PSD2 is a mandate that governs regulated payment service providers within the European Union, UK, and the European Economic Area. It is designed to increase competition and participation in the European payments system for merchants and other stakeholders. For more information, refer to the 3-D Secure Guide and our 3-D Secure 2 FAQs.


General Data Protection Regulation (GDPR) is a regulation that increases the level of control EEA and UK citizens/residents have over their personal data in the new digital age and presents a more unified environment for international business across Europe. For more information, refer here.

PCI Compliance

PCI is a Data Security Standard, a set of requirements designed to ensure that all companies that process, store and/or transmit credit and debit card information maintain a secure environment. For more information, refer to our PCI and SAQ information and our PCI-DSS Compliance information.


Your tax responsibilities depend on a variety of factors such as the sales revenue, transaction volume, and the state where your sales occur. In addition to the specific state tax laws, the model under which you operate within BlueSnap also has an impact.

Most BlueSnap customers are responsible for collecting taxes themselves. For guidance, please contact a tax specialist. If you are using BlueSnap Merchant of Record (Reseller) model, BlueSnap will be collecting tax on your behalf.

For more information on taxes, refer to Online sales tax and the Wayfair ruling.

If you’re using BlueSnap’s Payment API, BlueSnap provides built-in support for Avalara. See our Taxes Guide for complete details.

More information

For more information, refer to our Compliance FAQs.