In this post, I look at the best web hosting companies that offer PCI compliant servers. Not every web hosting company offers this service and that is why I have spent a lot of time researching these companies, to find you the best plans that are available.
For every one listed, I will include their trustpilot, Facebook and Google ratings (if available), so that you can see how highly rated they are. This list isn’t in any particular order, they are just the ones I think are the best options.
Disclaimer before we get started, I am an affiliate partner for many of the companies on this list. This means that if you buy a service using the links in this post, then I receive a small commission as a thank you. This commission helps me run the site and continue doing these kind of posts.
What is PCI Compliance?
PCI DSS stands for Payment Card Industry Data Security Standard. It is a set of security standards that were created and manage by the PCI SSC (www.pcisecuritystandards.org), which is an independant body created by the major payment brands, including Visa, MasterCard and American Express.
PCI Compliance is required by all businesses that accept, process, store or transmit credit card information.
Do I need to be PCI Compliant?
The simple answer is that every business, whether online or not that takes any kind of credit card payment needs to be PCI Compliant. Fortunately, there are 4 different levels of compliance and the majority of online stores will fall into level 4, which is the lowest one and has less requirements.
It is always best to check with your payment gateway to see which level of compliance you need to abide by.
Do I need PCI Compliant Hosting?
This very much depends on your payment gateway, many payment gateways process payments on their own sites and servers, which lowers your scope of responsibility.
But as I said above, you need to check with your payment gateway as to which level of compliance you need. Different gateways have different requirements when it comes to your server and websites security but if you do need PCI compliant hosting, then the companies listed below will be able to help.
Krystal Hosting – From £29.99 a month
4.9 out of 5
4.5 out of 5
Krystal make this list for two reasons, the first is that they are my web host of choice and I ran an ecommerce store on their hosting.
I now use them for this blog and other business websites I run. Not only did I see a big increase in performance when I moved but was also very impressed with the quality of the service and support that I received.
Krystal do offer a variety of packages and their basic shared hosting packages are probably fine for ecommerce but it is their business level hosting that really shines for ecommerce stores.
All of their business hosting plans include:
- PCI Compliant Hosting
- Unlimited Bandwidth
- Free LetsEncrypt SSL Certificate
- 4 Hourly Backups
- 24/7 Emergency Phone Support
- LiteSpeed Web Server
- 99.99% Uptime Guarantee – which you can check
- Unlimited Websites, Sub-Domains and Email Accounts
The Sapphire package is the basic PCI compliant plan, that is £29.99 + vat a month. For this you get all the things mentioned above plus 50gb SSD Storage, 2gb Ram, 2 CPU cores and 100 entry processes.
If you need more than this, then they have a Diamond package at £59.99 + vat a month and the top Tanzanite package which is £99.99 + vat a month. If you pay annually, then you get the equivalent of 2 months free.
Nimbus Hosting – From £30 a month
2.7 out of 5
5 out of 5
4.9 out of 5
The second hosting company on my list is Nimbus hosting, who specialise in ecommerce grade hosting from lightweight applications such as WooCommerce and Opencart up to resource heavy ones such as Magento.
All of Nimbus hosting packages, except for their base Vapour package are run on PCI compliant servers. To make your hosting PCI compliant for your ecommerce store is a simple one click activation, no need for specialist set up.
This is all down to their in house built STORM interface that makes many of the actions such as enabling PCI compliance and adding SSL certificates, easy to do by using simple one click technology.
With all Nimbus hosting packages, you get free website migration, on site backups and LetsEncrypt SSL Certificates. The amount of resources you get does depend on the package that you choose. The entry Helium ecommerce package includes:
- 4 Cores
- 2gb Memory
- 30gb SSD Storage
- 500gb bandwidth
Obviously the more expensive packages give you far more in terms of resources and top Oxygen and Nitrogen packages also include Cloudfare CDN as well.
Guru Cloud Hosting – From £29.99 a month
4.8 out of 5
5 out of 5
4.6 out of 5
The next entry on the list is a hosting company that I used to use myself and was very impressed with the quality of not only the service but also the support that I received from the moment I signed up.
Guru do say that their basic shared hosting plans will pass PCI scans but it is their business hosting package Shared Pro that is really geared up for PCI compliance.
One of the main plus points for Guru hosting is that they include 100gb of SSD storage on every plan, this is great if you have a site with large amounts of content. The Guru Shared Pro plan is set up to work with every type of ecommerce application from WordPress + WooCommerce and Opencart all the way up to resource heavy ones such as Magento.
Along with the 100gb of SSD data storage, you also get the following with every plan:
- PCI and GDPR compliant servers
- Hourly offsite backups
- Free SSL Certificate
- 100% Server Uptime
- 4000gb Monthly Bandwidth
- High Performance, Ecommerce Grade hosting
If you need more than what is available on the Shared Pro plan, then you can upgrade to a dedicated cloud hosting and that starts from £129 a month.
As you can see, most of the companies that you see on the majority of ecommerce hosting recommendations don’t make this list. This is because it requires a lot more from the hosting company in order for their servers to be PCI compliant.
This is also reflected in the pricing of these plans, this is because it is not possible for a hosting company to be able to offer fully PCI compliant servers for the price of standard shared hosting. But the benefit of this is that you do get high quality, high performance, ecommerce grade hosting!