The Payment Card Industry Data Security Standard (PCI DSS) applies to companies that accept credit card payments. If your company intends to accept card payments, and to process and transmit cardholder data, you need to host your data securely with a PCI compliant hosting provider on a PCI compliant server. Your Merchant Service Provider (cc processor) will have asked you to comply with PCI standards if you are accepting credit card payments on your site at your own cc gateway (e.g. some shopping cart script). Only if you utilize so-called 3rd party billing solutions such as Stripe to process your customer's payments will you not be required to be PCI compliant (as your customers are then redirected to that 3rd party provider's website and server).
O u r S e r v i c e : The actual implementation of many and complex PCI rules is quite a handful of work. There are parts of the PCI Compliance ruleset that we cannot legally help you with, as you have to confirm and sign in person (e.g. a statement regarding the access of your employees to the cc gateway). HOWEVER, we can very well assist you with the technical setup of the dedicated server or VPS used to install your cc gateway. The security hardening and the adjustments according to the PCI ruleset are indeed a
complex series of tasks, consisting of many steps to be taken care of. The analytics program your Merchant Service Provider will require you to utilize will point you to the many security problems of a server with a "default" setup, e.g. a hosting server. We will take care of a one-time, first implementation of all the technical requirements, we will secure your server, so it can pass the required PC I compliance test. Please remember that this is a PROCESS; your cooperation while working on it (via email communications) is required.