EDTHosting.com's world-class data center, is pleased to announce that it has validated formal, audited compliance as a “Level 1” service provider under Payment Card Industry Data Security Standards (PCI-DSS) Sections 9 and 12.
The PCI-DSS is a comprehensive set of standards that require merchants and service providers that store, process, or transmit customer payment card data to adhere to strict information security controls and processes. Within the standards, Section 9 states that physical access to cardholder data must be restricted and Section 12 requires that a policy addressing information security must be maintained. The requirements were created by the founding brands of the PCI Security Standards Council, which includes American Express, Discover Financial, JCB International, MasterCard Worldwide, and Visa Inc.
Our datacenter has always utilized documented, systematic procedures to provide state-of-the-art security, high-availability, and disaster recovery solutions that are the underpinnings of regulatory compliance for a managed hosting company. As part of its PCI-DSS validation, our datacenter was issued a Report on Compliance (ROC) certification which will be renewed annually.
The assessment was performed by SAS70 Solutions, Inc., (www.sas70solutions.com) a certified public accounting firm and Qualified Security Assessor (QSA) that provides assurance and compliance services to global companies. For more information about PCI-DSS, please visit the PCI Security Standards Council Web site located at www.pcisecuritystandards.org.