Security risks seem to crop up at every turn — and we’re fighting back. Magento Commerce is designed to provide secure commerce environments and experiences for both you and your customers. With these IT resources, you can dive into the technical details, find support and implement the product quickly.
Visit the Security Centre to get the latest patches, security updates and best practices in Magento Commerce.
Visit the Magento Trust Centre and learn about our commitment to security, privacy and compliance — the key building blocks to mutual trust.
Browse extensions and themes you can use to expand your online store, with categories ranching from customer service to marketing to delivery and fulfilment and beyond.
Read more about the migration to Magento Commerce 2, including the major differences and how to start the migration.
Facilitate and inform conversations between business and IT groups considering Adobe Commerce Cloud.
Learn about how we can help you to meet PCI and SOC 2 compliance, keeping both you and your customers safe and happy.
Get more details about our stance on privacy in Magento Commerce, including data protection, GDPR and our Privacy Shield.
Magento Commerce requires payment gateway integrations where credit card data is passed directly from the consumer’s browser to the payment gateway. Card data is never available on the production environment. Actions on the transactions by the e-commerce application are completed using a reference to the transaction from the gateway.
Adobe is Privacy Shield self-certified, which is a European Commission-approved mechanism that enables the transfer of personal data from the European Union and Switzerland to the United States.
Using our service, you may use or store either personally-identifiable information (PII) on consumers or confidential data from your customers. Protection of customer and consumer data is one of our critical obligations.
Amazon Elastic Block Store (EBS) is used for storage. All EBS volumes are encrypted using the AES-265 algorithm. This means that the data will be encrypted at rest. The system also encrypts data in transit between the CDN and the origin and between the origin servers. Customer passwords are stored as hashes. Sensitive credentials including those for the payment gateway are encrypted using the SHA-256 algorithm. The Magento application does not support column or row level encryption or encryption when the data is not at rest or not in transit between servers.