Comments for Tag ORDA - Webmaster Lab http://www.tagorda.com Site building, Servers, Hosting Fri, 21 Oct 2011 22:13:31 +0000 hourly 1 http://wordpress.org/?v=3.2.1 Comment on Having Problems with Zen Cart/First Data by karen http://www.tagorda.com/150/#comment-277 karen Fri, 21 Oct 2011 22:13:31 +0000 http://www.tagorda.com/150/#comment-277 I What happend with this? I am running into the same problems with zen/host gator I What happend with this? I am running into the same problems with zen/host gator

]]> Comment on So, I am looking into HIPAA complaint hosting by Karl (PCI DSS QSA / Senior Auditor) http://www.tagorda.com/124/#comment-60 Karl (PCI DSS QSA / Senior Auditor) Mon, 04 Jul 2011 15:13:15 +0000 http://www.tagorda.com/124/#comment-60 Being HIPAA compliant does not mean that an entity would be PCI DSS compliant and vise versa. These are two different standards with a similar goal in mind: protection of sensitive information (ePHI vs credit/debit cards). PCI is applicable for any process that stores, processes, or transmit cardholder data while the reverse is true for ePHI data. It would help you to better define what you are looking for and the roles/responsibilities for protecting the data are. What are your business processes surrounding the protection of the data? Are you looking to offload hosting and/or management of systems to ABC hosting provider or will they function in more of an application service provider role (very different)? ~Karl Being HIPAA compliant does not mean that an entity would be PCI DSS compliant and vise versa. These are two different standards with a similar goal in mind: protection of sensitive information (ePHI vs credit/debit cards). PCI is applicable for any process that stores, processes, or transmit cardholder data while the reverse is true for ePHI data.

It would help you to better define what you are looking for and the roles/responsibilities for protecting the data are. What are your business processes surrounding the protection of the data? Are you looking to offload hosting and/or management of systems to ABC hosting provider or will they function in more of an application service provider role (very different)?

~Karl

]]>