PCI Watch

PCI DSS requirement 2.4 and appendix A: ?PCI DSS applicability for hosting providers? is applicable to all shared hosting providers whose customers store, process, or transmit cardholder data. A shared hosting provider is one that houses numerous customers on the same server. These requirements for shared hosting providers are not applicable when servers are dedicated to a customer (but other PCI DSS requirements do apply). To determine the relevant PCI DSS requirements for a given shared hosting provider, please contact a Qualified Security Assessor (QSA). The list of QSAs can be found at https://www.pcisecuritystandards.org/approved_companies_providers/qsa_companies.php