Skip to menu
Skip to content

PCI-compliant Cloud

The Peak 10 PCI-compliant Cloud is a secure cloud environment structured to help customers achieve PCI Data Security Standard (PCI DSS) compliance. Featuring fully managed infrastructure and logical security, the Peak 10 PCI-compliant Cloud fortifies the integrity of payment card data and processing while offering all the benefits of Peak 10 cloud services.

Peak 10 is a PCI DSS Certified Cloud Infrastructure Provider, and all processes and components under the control of Peak 10 are PCI DSS compliant.  The report on compliance (ROC) is available to customers upon request.

Peak 10 is also on the "Approved Service Providers" list for major card brands including VISA. (The lists of approved service providers can be found on each bank card’s web site.) In addition, a variety of managed services are available to help customers implement the IT controls needed to meet the PCI DSS requirements for which they may be responsible.

Peak 10 Knows PCI

To achieve PCI compliance, organizations must meet 12 data security standard requirements that are organized under six functional areas. Peak 10 has in-depth understanding of these requirements and can work with customers to help meet them.

Secure

Employing industry-recognized payment card security standards, the PCI-compliant Cloud features multiple layers of protection to help keep cardholder data secure, limit access to the cardholder data and to monitor, defend against and mitigate cyber assaults and threats. Managed security features include:

  • Firewall and router configurations built and maintained with PCI in mind
  • Industry best practices for installation, configuration and patch installation of managed servers and associated network devices
  • Proactive antivirus management ensuring versioning, active scanning and remediation of malware
  • Web application firewall, quarterly vulnerability scanning and documented change request procedures
  • Managed user access lists based on customer need
  • Secure audit trail and resource tracking

Infrastructure

The PCI-compliant Cloud is built on Peak 10's robust infrastructure, which includes best-of- breed technologies and secure, geographically diverse data centers. Peak 10 is certified under PCI DSS 2.0 as a Level 1 data center service provider.

Flexible

The PCI-compliant Cloud is highly flexible. Unlike off-the-shelf cloud solutions, it can be tailored to meet customers' specific requirements so they get what they need ― and don't pay for what they don't need.

24x7x365 Support

The Peak 10 PCI-compliant Cloud comes with round-the-clock technical support to help maximize uptime and availability and enhance security. The Peak 10 staff  is continuously trained on the latest security protocols, as well as in current facilities and resource management.

PCI-certified and Audit-ready

In addition to meeting PCI DSS requirements, Peak 10 is audit-ready for customers who need assistance in meeting the requirements of other certifications and regulatory demands, including:

  • SSAE 16
  • Health Insurance Portability and Accountability Act (HIPAA/HITECH)
  • Food and Drug Administration
  • European Commission's Directive on Data Protection ("Safe Harbor")
  • Sarbanes-Oxley (SOX)
  • ISO 27001
  • Gramm-Leach-Bliley (GLBA)

For a complete overview of the PCI Security Standards Council’s comprehensive standards, click https://www.pcisecuritystandards.org/security_standards/

PCI Compliance in the Cloud Webinar

Learn how to meet PCI DSS requirements when operating our system in the cloud. Learn More

PCI Complete

Put the power of PCI Complete, a Peak 10 managed security solution, to work for your company. Download the PCI Complete brochure and summary document.