Every day, millions of people use PayPal to manage and move money online or on a mobile device. That’s why one of our top priorities is to ensure our customers have a secure experience when transacting with PayPal. Often, that experience starts with merchants across the globe that accept PayPal. As we’ve previously announced, we are working closely with our merchants to ensure they have the most up to date systems and meet the new security protocol requirements by the June 30, 2018 deadline, set by the Payment Card Industry (PCI) Council.
 
What PayPal Merchants Need to Know About the Upgrade Requirement
Over the last year, we’ve made a number of security upgrades to the PayPal system to help maintain the security of consumer and merchant transactions, whether online, in app, or in store.
 
One of these upgrades included the Payment Card Industry (PCI) Council mandate to move our systems to Transport Layer Security (TLS) 1.2, an enhanced security protocol that encrypts customer data over the Internet. This critical security upgrade requires PayPal merchants to make the necessary protocol updates, as well. We appreciate the millions of PayPal merchants who have already upgraded their systems to these latest protocols. In order enable a more secure environment for our shared customers, we are moving forward with requiring all merchants to implement these important upgrades in the first half of 2018.
 
How Can Merchants Upgrade Their Systems?
We’re here to help. Information on the required system changes, the impact of the changes, and how to implement them can be found on our Merchant Security Microsite
 
What is the Deadline for Merchants to Make the Required Updates?
Before June 30, 2018, PayPal is requiring all merchants to upgrade their security protocols to TLS 1.2, in line with the PCI mandate, and make the other required security upgrades. At that time, merchants will no longer be able to accept payments with PayPal until they make the necessary upgrades.
 
PayPal Upgrade Connection Tests – May Impact Ability to Process Payments
It’s important to note, beginning in April 2018, we will begin conducting brief rounds of testing that will emulate the upgraded security experience, so that merchants can understand the areas of their integration that still require extra work. These tests could impact merchants’ ability to process payments if they have not made the required upgrades.
 
If you have already made the required upgrades, your systems will not be impacted.  For merchants who have not made the required upgrades, we encourage you to do so as soon as possible to avoid service interruption. Dates for these tests and full deployment will be published on our microsite.
 
As a leading payment provider, we’re committed to continuously making significant investments in security to protect our ecosystem.  Thank you for your continued support and for helping us maintain the highest security standards for all of our shared global customers.