OneCause (BidPal, Inc.) is PCI Certified and has validation by "TrustWave", which provides a certificate on OneCause.com. TrustWave conducts monthly scanning of OneCause systems to ensure compliance. The proof of the scan is the green "Validated" statement on the certificate, which is visible on onecause.com.
PCI compliance documents are available on onecause.com at the following locations:
1. Go directly to https://www.onecause.com/pci-attestation-of-compliance/
2. By clicking "Privacy and Security" link at the bottom of onecause.com
These links will provide the Attestation of Compliance (AOC) for iATS and BidPal, along with a signed "Certificate of Compliance" from Trustwave (signed on March 2017), the firm who conducts monthly security scans of the BidPal system to confirm compliance.
Note that the "Compliance Certificate" was printed and signed at a point in time (e.g. March 2017) and so while it may appear that the last security scan expired in on the date signed, that is not the case. It simply means that OneCause stores a single copy of the signed document because some clients ask for a signed copy. For a current, real-time check of the validity of the "Scan", simply click the "TrustWave" icon on the bottom of the OneCause.com site. When clicking on the TrustWave Link, a document similar to below will be produced.