Showing results for 
Search instead for 
Did you mean: 

PCI Complaint Hosting for

Hello everyone,,


Sorry for the long post.

I'm developing my first e-commerce site and told my client to choose a merchant services provider to process their credit card transactions. They decided to go with But before they can begin processing they need to answer some questions about their hosts firewall to prove they are PCI compliant.

They apparently host through GoDaddy and forwarded these questions on to them. GoDaddy informed them they had to pay an extra $35 a month to add on a firewall per domain.

I'm not the most server savvy person, but it seems odd to me that GoDaddy doesn't already have a firewall in place. I'm also a bit fuzzy as to how they could apply a firewall to just one domain on their server.

With many negative interactions with GoDaddy in the past, I thought I'd get some expert non-biased advice from you guys. Is GoDaddy trying to sell my client something they don't need? Is their a better/cheaper way to do this (including switching hosts)? Do they still need to pay for the firewall to become PCI compliant if we use the SIM API?

Any advice is much appreciated.