Yes. All our technology is fully compliant with GDPR legislation and our payment gateways are PCI DSS complaint Category 1.