Several technology partners of Comodo® include Microsoft®, Intel®, Mozilla® (developers of Firefox and Thunderbird)
PCI compliance, though not currently a federal law, is mandated by several State laws to force components of the PCI Data Security Standard (PCI DSS) into law. Legislatures and industry trade associations are pushing to create federal law around data security and breach notification.
According to pcicomplianceguide.org, "PCI applies to all organizations or merchants, regardless of size or number of transactions, that accepts, transmits or stores any card holder data. Said another way, if any customer of that organization ever pays the merchant directly using a credit card or debit card, then the PCI DSS requirements apply." In other words, all businesses that store, process or transmit payment card holder data must be PCI compliant.
SSL (Secure Sockets Layer) certificates are cryptographic protocols which provide security for communications over networks, such as the internet.
EV-SSL, or Extended Validation SSL, certificates are issued only when website owners and operators establish the legal identity, as well as the operational and physical presence of the website owner, the applicant is the domain name owner, or has exclusive control over the domain name, confirmation of the identity and authority of individuals acting for the website owner as been established, and that documents pertaining to legal obligations are signed by authorized officers, in many cases a legal opinion letter, written by a lawyer and notarized.
Typical EV-SSL certification takes about 2 weeks, but the end result is usually a greater level of encryption between the customer's computer and the hosting web server, resulting in safer transactions of card holder data.
According to Jeremy Harris, application developer for HelmetHead Cycle, "we do not store financial information on our servers. All payments information is submitted directly through our forms to a credit card processor backend, typically Authorize.net, and only the result of the transaction, the last 4 digits of the credit card, and invoice data is stored on our servers."
"We've [also] implemented a utility where people can directly find what products fit their bike without having to search for them. It's taken about a month to associate our current product catalog to various vehicles and develop the database backend and programming to bring that to the end user. We've also finished developing out a star rating system, rapid wishlist and compare features and the ability for customers to port products directly from their wishlist or compare lists to their shopping cart with as little hassle as possible. These large updates also include a completely different website presence and will be running on entirely different web servers, tuned for faster speed and security, slated for launch towards the middle of February" states Harris. "The goal is to provide a highly interactive environment for the end user as well as provide over 30,000 pages of product data and reviews as fast as possible for anybody searching for anything we may offer."
