65.3. PCI COMPLIANCE

If you are processing credit card payments on your site, you want to be especially careful that your server is not compromised. If you have your own merchant account and somebody hacks into your server and gains access to your customer's credit card numbers, you could be liable for huge fines.

To guard against this (and to absolve yourself of liability), you should make sure your server has Payment Card Industry (PCI) compliance, which is a standard set by the credit card companies to safeguard sensitive consumer information. These companies offer web server scanning services for PCI compliance.

http://www.ncircle.com/

http://www.hackerguardian.com/

https://www.controlscan.com/index.php

http://www.securityseer.com/

Get The Little Black Book of Online Business: 1001 Insider Resources Every Business Owner Needs now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.