Paystack custodies funds. That is a high-trust posture. The Trust Center documents exactly how those funds are held, who can touch them, what compliance frameworks apply, and what we publish the day a problem is detected.
Your customers’ funds never commingle with Paystack’s operating capital. They sit in segregated For Benefit Of accounts at a partner bank, held in your customers’ names. If Paystack or Codelucent disappeared tomorrow, the FBO funds would not be part of the bankruptcy estate.
Each end-beneficiary receives pass-through FDIC coverage up to the applicable limit. Documented quarterly in the ledger.
Partner bank publishes a daily reconciliation hash. Our ledger includes it. Any drift between them alerts the Verifier.
Buffered funds are never lent, swept, or invested. They sit in cash until released or reversed.
| Framework | Scope | Status | Evidence |
|---|---|---|---|
| Nacha 2026 · Agentic Commerce Rules | Reasoning disclosure, reversal flow, counter-party verification | Aligned | mapping doc available under NDA |
| SOC 2 Type II | Security, Availability, Confidentiality | In audit · window closes 2026-Q3 | report on request post-audit |
| OFAC · sanctions screening | Counter-parties screened on every initiate | Continuous | screening log per-tenant |
| BSA / AML | KYB on tenants · transaction monitoring | In effect | MLRO oversight · partner bank |
| PCI DSS | N/A · Paystack does not process card rails | Out of scope | — |
The integrity checker has credentials that cannot move funds or mutate the ledger. It only raises incidents.
Any operator-initiated release before the buffer elapses requires two distinct operator approvals, logged to the ledger.
Every state change event is signed. Public verification keys are published and rotated on a documented schedule.
Any Verifier-raised integrity alert appears publicly on this Trust Center within 60 minutes of page-out.
Ledger snapshots are written continuously to three regions. Weekly root hashes anchored to a public notary.
Annual red-team targets the Verifier and FBO reconciliation flow. Findings published in the next SOC2 window.
Enterprise customers get the full SOC2 report, the Nacha mapping, the FBO structure diagram, and the incident postmortem archive. Request access and we’ll route you to the right person.