Blog
← Back to all articles
Payment gatewayPCI DSSRBI complianceGST

Payment Gateway Compliance for Indian SMEs

workro desk team·6 min read·5 February 2026

Compliance Requirements

  • PCI DSS: Mandatory for all businesses handling card data. Level 4 (fewer than 20,000 transactions/year) requires SAQ (Self-Assessment Questionnaire).
  • RBI guidelines: Two-factor authentication for all online transactions. Tokenisation for recurring payments.
  • GST: Payment gateway charges attract 18% GST. Ensure proper invoice and ITC claims.

Popular Payment Gateways in India

  • Razorpay — most popular for SMEs, easy integration
  • PayU — good for e-commerce
  • Cashfree — strong API and payout features
  • Stripe — global but limited India features

Ready to fix faster?

Create your workspaceMore articles