top of page
< Back

A1 PCI DSS (v3.2.1)

Compliance Standard

Compliance Version

Control ID




Appendix A1: Additional PCI DSS Requirements for Shared Hosting Providers


Protect each entity’s (that is, merchant, service provider, or other entity) hosted environment and data, per A1.1 through A1.4:

A hosting provider must fulfill these requirements as well as all other relevant sections of the PCI DSS.

Note: Even though a hosting provider may meet these requirements, the compliance of the entity that uses the hosting provider is not guaranteed. Each entity must comply with the PCI DSS and validate compliance as applicable.

bottom of page