Certificate validation
Verify what we certify.
Every certificate issued by GRC360 can be independently validated. Each is a GRC360 attestation of the referenced engagement — for PCI DSS, the formal validation evidence remains the Report on Compliance (ROC) and Attestation of Compliance (AOC).

Certificates issued by GRC360 carry this mark and a QR code linking to their verification page on this site.
Methods for validation
- Scan the QR code — locate and scan the QR code provided on your certificate. It links directly to the certificate's verification page on this site, where you can confirm the validity of the certificate.
- Submit a verification request — alternatively, send a copy of the certificate to info@grc360.net and our team will confirm its authenticity.
If you have any questions or require further assistance, please do not hesitate tocontact us.