Cardholder data security standards are constantly evolving to keep up with changing risks and threats. In an effort to help businesses protect customer data, the Payment Card Industry Security Council recently announced new compliance requirements around the PCI Data Security Standard (PCI DSS).
To ensure the highest level of security for our customers, Internap has moved quickly to achieve PCI DSS v3.1 compliance for our managed hosting and colocation services. We’re proud to be one of the first service providers to meet the new requirements.
What’s changed?
The updated PCI DSS v3.1 includes several changes, most notably regarding Secure Sockets Layer (SSL) and early Transport Layer Security (TLS) protocols. According to documentation released by the Security Standards Council, SSL and early TLS will no longer be considered effective controls to protect payment information after June 30, 2016. Learn more about the changes in v3.1.
While these updates are particularly important for the ecommerce and financial services industries, all businesses that process payments online should be familiar with PCI DSS and have a plan in place to prevent data breaches.
At Internap, we strive to be at the forefront of compliance and security. Our data centers already comply with SOC2 processes and audits, and PCI-compliant hosting allows our customers to be confident in the security of their infrastructure.