Independent Report Determines NeoSpire’s Managed Hosting Services Can Be Leveraged For PCI Compliance

Share Article

Managed Hosting Company Designated as Level 1 Service Provider Validated Entity Under Requirements of Payment Card Industry Data Security Standard (PCI DSS)

NeoSpire Logo

Depending on how a merchant handles its credit card data, as much as 75% of PCI requirements can be satisfied by NeoSpire, therefore significantly reducing the merchant’s regulatory burden.

NeoSpire, a mission-critical managed hosting company that has been fully compliant with the PCI Data Security Standard since 2005, announced today that it has been recognized by the major payment brands as a service provider meeting the highest level of compliance validation. NeoSpire’s achievement, summarized in the QSA’s RoC (Report on Compliance), assures merchants and service providers that NeoSpire provides Web hosting capabilities are consistent with the most stringent level of the PCI standard.

NeoSpire’s Level 1 Service Provider registration, which applies to those service providers processing over 300,000 transactions annually, has recently been confirmed by both MasterCard and Visa. MasterCard’s report is found as part of its Site Data Protection Program, while Visa has added NeoSpire to its Global Registry of Service Providers.

PCI DSS compliance mandates a strict adherence to a comprehensive set of requirements designed to enhance payment account data security. PCI DSS was developed by the founding payment brands of the PCI Security Standards Council including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc., to help facilitate broad adoption of consistent data security measures on a global basis.

“NeoSpire’s RoC helps enables merchants to more readily achieve PCI Compliance,” said Sean Bruton, Sr. Director of Client Services for NeoSpire. “Depending on how a merchant handles its credit card data, as much as 75% of PCI requirements can be satisfied by NeoSpire, therefore significantly reducing the merchant’s regulatory burden.”

For an organization to be validated through PCI DSS compliance as a Level 1 Service Provider, a QSA must conduct an in-depth assessment of the provider’s infrastructure, network configuration and security practices. The QSA conducts an on-site evaluation of a comprehensive list of items including firewalls, daily and archival logs, penetration testing, file integrity monitoring, Web and database server configuration, and intrusion detection.

Since the beginning of development for the PCI DSS, NeoSpire has worked with merchants to remove the burden of security and compliance through its fully-managed hosting solutions. In 2009, NeoSpire joined the PCI Security Standards Council as a Participating Organization, working with the council to evolve the PCI DSS and other payment card data protection standards.

NeoSpire has recently released “Getting Started with PCI DSS”, a webcast for any business that accepts or deals with payment card information. The free webcast explains the basics of finding your merchant level, establishing a compliance level, safe harbor and potential liability, and more. To view the webcast, visit

About NeoSpire:
NeoSpire, Inc. is a premier provider of full-service, mission critical managed hosting solutions for organizations that demand 100% uptime. Since 1999, NeoSpire has been providing the infrastructure, security, expertise and customer-centric support required by clients that rely on Web sites and Web-based applications for critical business purposes. Visit for more information. To schedule interviews, contact Joy Hays, Director of Marketing at (214) 292-8100, or via email at marketing(at)neospire(dot)net.


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Joy Hays
NeoSpire Managed Hosting
(214) 292-8100 x8122
Email >
Visit website