The Payment Card Industry (PCI) Data Security Standards are a set of requirements designed to help guarantee that companies that process, store, or transmit credit card information maintain a secure environment. SiteLock’s PCI Compliance service is fully certified.
Once the order has been processed, go to your SiteLock dashboard and click the "PCI Compliance" link in the Scan Type column.
You will be taken to the Merchant Contact Information window. Enter your Merchant contact information.
Click "Submit," then click the "Save and Confirm" button (if you do not have all the Merchant contact information on hand, you can click "Save as Draft")
PCI configuration consists of three different steps. However, depending on how your profile is setup, you may be presented with an additional step. The steps are "Profile phase," "The Scanning," "The SAQ (Self-Assessment Questionnaire)" and "the Attest phase."
This is a view of the PCI Compliance phase without the Scanning.
A view of the PCI Compliance phase with Scanning.
How to setup the Scanning
Click the "Scanning" flag to configure your Scan options.
You can schedule when the scan will run. For the Domain/IP field, you will need to log in to your Winhost Control Panel and go to Domains Manager to verify the IP address associated with your site. For more information on your Winhost DNS record, see: How to update DNS zone records.
If your scan fails you can click the "Review Scan" button to obtain documentation on the latest scan.
A failed scan can be marked as False Positive and submitted to the Scanning company for rescanning.
Once any False Positives have been approved you can Attest the Scan and SAQ for the final step.
Once 'Attested' you will get an email notification and you can log into your SiteLock PCI dashboard to download the required documents to be submitted to your processor.
Note: the Self-Assestment Questionnaire (SAQ) can vary based on your Profile. All questionnaires must be answered completely for PCI verification.