SYDNEY, Australia, 11 March 2025 – Shopify, a provider of essential internet infrastructure for commerce, has today announced a simplified compliance process for its millions of merchants in the face of the new mandatory requirements of PCI Data Security Standards Version 4.0 (PCI DSS v4.0), that will come into effect on March 31, 2025.

Among the critical updates from the Payment Card Industry Security Standards Council, led by major credit card companies, is the introduction of measures designed to prevent digital skimming attacks. These are a major cybersecurity threat where hackers steal sensitive information such as credit card details directly from online transactions.

Australia is seeing a rise in cyberattacks, with the Australian Signals Directorate (ASD) receiving over 87,000 cybercrime reports during the 2023–2024 financial year, one report every six minutes. Within this context, the new requirements are designed to safeguard the integrity of online transactions and strengthen consumer confidence in digital commerce. However, PCI DSS v4.0 regulations also present intricate compliance challenges for online businesses.

Shopify, a leader in global commerce, has proactively simplified the compliance process for its millions of merchants. “We’ve built Shopify’s world-class checkout and storefronts architecture to be future-proof, providing solutions that simplify compliance with the ever-changing list of security, data, and privacy requirements and regulations,” said Ilya Grigorik, Distinguished Engineer at Shopify. “We actively engage with standards and requirements development, and sweat the technical details of implementing the right components across our platform. This enables Shopify merchants of every size to focus on running and growing their business, free from the scramble and worries of managing compliance tasks.”

For online businesses not on Shopify’s unified platform, meeting these new mandatory requirements can be time and labour-intensive. These requirements include stricter protection for card fields on checkout pages, regular assessments of website tampering, more detailed records of security measures and quicker response times for security issues.

As the landscape of global regulations shifts, Shopify offers a straightforward and highly customisable checkout solution, ensuring that businesses can meet the latest security requirements effortlessly. This flexibility allows merchants to tailor their checkout experiences to align with their specific needs. To explore these changes further and discover how Shopify equips its merchants for success, visit here.

—END

About Shopify

Shopify is the leading global commerce company that provides essential internet infrastructure for commerce, offering trusted tools to start, scale, market, and run a retail business of any size. Shopify makes commerce better for everyone with a platform and services that are engineered for speed, customization, reliability, and security, while delivering a better shopping experience for consumers online, in store, and everywhere in between.  Shopify powers millions of businesses in more than 175 countries and is trusted by brands such as JB HiFi, July, Victoria Beckham, Heinz, Patagonia, Tupperware, Netflix, LSKD, Culture Kings, HiSmile, and many more. For more information, visit shopify.com/au