The Payment Card Industry (PCI) Data Security Standards are a set of requirements designed to help guarantee that companies that process, store, or transmit credit card information maintain a secure environment. SiteLock’s PCI Compliance service is fully certified.
To use SiteLock’s PCI service, you must have SiteLock addon for your DiscountASP.Net account. To order SiteLock, see: Getting Started with SiteLock.
Once the order has been processed, go to your SiteLock dashboard and click the "PCI Compliance" icon.
You will be taken to the Merchant Contact Information window. Enter your Merchant contact information.
Click "Submit," then click the "Save and Confirm" button (if you do not have all the Merchant contact information on hand, you can click "Save as Draft")
PCI configuration consists of three different steps. However, depending on how your profile is setup, you may be presented with an additional step. The steps are "Profile phase," "The Scanning," "The SAQ (Self-Assessment Questionnaire)" and "the Attest phase."
This is a view of the PCI Compliance phase without the Scanning.
A view of the PCI Compliance phase with Scanning.
How to setup the Scanning
Click the "Scanning" flag to configure your Scan options.
You can schedule when the scan will run. For the Domain/IP field, you will need to log in to your DiscountASP.Net Control Panel and go to DNS Manager to verify the IP address associated with your site. For more information on your DiscountASP.Net DNS record, see: DNS Manager Definitions.
If your scan fails you can click the "Review Scan" button to obtain documentation on the latest scan.
A failed scan can be marked as False Positive and submitted to the Scanning company for rescanning.
Once any False Positives have been approved you can Attest the Scan and SAQ for the final step.
Once 'Attested' you will get an email notification and you can log into your SiteLock PCI dashboard to download the required documents to be submitted to your processor.
Note: the Self-Assestment Questionnaire (SAQ) can vary based on your Profile. All questionnaires must be answered completely for PCI verification.