Managed hosting provider Globix UK has become the first, and currently only, UK data centre to have Payment Card Industry Data Security Standard (PCI DSS) accreditation.
To achieve PCI DSS accreditation for its unmanaged hosting services, Globix worked with Visa and MasterCard approved security assessor, One-SEC. As a result, all customers storing credit card details, customer information and transactional data with Globix have the guarantee that their data hosting facility complies with the 12-step security standard outlined by the card issuers.
Additionally, all customers hosting with Globix are now exempt from requiring their own data centre accreditation, as a result, reducing their own end-to-end transactional PCI DSS accreditation.
PCI DSS accreditation is now required by all companies involved in the online transactional lifecycle, from payment processing and transmission through to web and data hosting services. The PCI DSS, a joint initiative from Visa and Mastercard, is a 12-point security standard set up to ensure that cardholder data is processed, transmitted and stored in a secure manner. If a security breach takes place as a result of non-compliance with this industry-wide security standard, Visa and MasterCard can refuse to cover the cost of the actual and any subsequent fraudulent activity. They also hold the right to fine the company, or individual company directors for failing to provide a secure payment environment, or even close down their payment acceptance mechanisms completely.
Globix currently holds PCI DSS accreditations for its unmanaged hosting services. It is partnering with One-SEC to achieve accreditation for its managed services. This is scheduled for completion before the end of 2006.
Related links: (Open in a new window.)
www.visaeu.com/acceptingvisa/ais.html
Taken from Information Security Bulletin.