Simple. Secure. Compliant.
All of our PCI DSS Solutions come with Web Application Firewall (WAF), Site-to-Site VPN Tunnel (2 Tunnels), Daily Backup with Monthly Rotation, Custom Network Firewall Policies, Advanced Threat Protect, Gateway Anti-Virus Protection, Personal Security Profile, Zero Downtime Guarantee, Free 30 Money Back Guarantee, Free SmarterTools Bundle, Free SSL Certificate, and Free Server Monitoring.
2 Core SSD Server
$249/month
4 Core SSD Server
$299/month
$349/month
8 Core SSD RAID
$399/month
The Web Application Firewall (WAF) appliance applies a set of predetermined and customer rule sets to filter out malicious HTTP requests (packets) before they make it to your web site. HTTP conversations can include malicious attempts hidden within the HTTP request such as, cross-site scripting (XSS), SQL injections, Parser attacks or info leakage. There is a one week learning phase where the WAF sits passive and learns what is normal and abnormal for your website. After that, a custom rule set specifically developed for your web site is applied.
Managed Backup process runs nightly at a predetermined time. It creates a full shadow copy of your server and securely transmits the backup image to a central archive server for storage. This process is completely independent from your server; this avoids potential performance issues as the process runs completely isolated in the background and does not use server resources.
Local attached Solid State Disk with direct attached storage or RAID containers provide the lowest disk latency, extreme I/O performance, max bandwidth throughput and redundancy built-in available. This means instant access to your data and extreme speeds mean better website visitor experience increasing SEO ranking and increasing your bottom line.
SSL certificates are used to establish a secure encrypted connection between a browser and a website. The SSL connection protects sensitive data, such as credit card information, exchanged during each visit. ControlHost provides one (1) free parent level domain SSL certificate per account.
Viruses have become more sophisticated, many viral threats are blended, operating at multiple layers, bypassing traditional client-based solutions. So, we analyze files in real time at the gateway, inspecting unlimited sized and compressed files regardless of the protocol. This not only insures virus free traffic, but also unburdens each server, making for a safer network and a better performing Web hosting platform.
We have spent more than 15 years building and perfecting our network infrastructure to provide exceptional reliability and service to our customers. We strive to ensure our network is available 100% of the time. That’s why we out-perform industry giants year after year.
Learn more
All servers are protected by our multi-layer security strategy which monitors and identifies behavior patterns to discern the intent of every visitor. Potential attackers are stopped cold at the network edge before your server can be affected. It’s our personalized Next Generation Threat (NGT) protection that ultimately keeps you and your server safe from malicious behavior.
FullControl data centers are state of the art, forward thinking data centers. We man security patrols, utilize biometric access scanners, key codes and card reader access to control entry into our facilities. Specific policies exist to control unauthorized access, damage or interruption with normal business. Backed by UPS and on-site backup diesel generators, we ensure the highest level of availability. FullControl data centers are SSAE 16 SOC audited and on-site audits are completed every six months. Our testing periods are Oct 1st thru Sept 31st.
We're Committed to Compliancy
Does your business need SSAE-16, HIPAA or PCI DSS compliancy? Our server plans include the physical security, data safeguards and backup management to keep your data protected.
Health Insurance Portability and Accountability Act (HIPAA) establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. Every ControlHost server plan includes the physical security, data safeguards and backup management to keep your data protected. We work hand-in-hand with you to ensure you stay compliant, up to date on evolving technology and security policies.
Contact us to get started with a free HIPAA checklist to learn what it takes to ensure your Electronic Personal Health Information (ePHI) is safe, secure and compliant.
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded credit cards from the major card schemes including Visa, MasterCard, American Express, Discover, and JCB. ControlHost helps you deliver physically and logically secure server environments to help safe-guard your customers’ data.
PCI DSS is a partnership, some controls are handled by your hosting provider (ControlHost), some are handled by your merchant provider (payment processor) and some are handled by you (merchant).
To speak with a security expert, contact us today.
This was formerly known as SAS 70
FullControl engaged industry leading, Mayer Hoffman McCann independent accounting firm to report on controls at a service organization relevant to a user entity’s internal controls and an opinion on the operating effectiveness of those controls throughout a specified period. This report also includes a detailed description of the service auditor’s tests of controls and results for conducting high-availability data center operations.
SSAE is an internationally accepted standard that was developed by the American Institute of Certified Public Accountants (AICPA) as the authoritative guide for reporting on service organizations and is the recognized mark of service quality. The Statement on Standards for Attestation Engagements (SSAE) No. 16 SOC 1 Type II is one of the most widely used auditing standards for an IT service company.
View our latest SSAE 16 SOC report.