Why PCI Compliance Matters
If your website accepts, processes, or transmits credit card information, PCI DSS (Payment Card Industry Data Security Standard) compliance is a requirement — not just a recommendation. It protects your customers’ data, builds trust, and shields your business from potential liability in the event of a breach.
As a small retailer, ensuring your site meets PCI standards is essential — but also manageable when using the right tools and services.
Our Approach to PCI Compliance
At Specialty Toys Network, we support clients with a wide range of secure hosting, eCommerce, and data tools. However, we are not a PCI compliance certifying agency, and we do not offer Certified PCI Compliant hosting. Instead, we focus on helping you choose platforms and tools that make achieving PCI compliance easier.
We strongly recommend choosing services that are already PCI compliant or that support your ability to become compliant. Below is a breakdown of our services with notes on their PCI status.
PCI Compliance Status of Our Services
| Service | PCI Compliance Status | Notes |
|---|---|---|
| Shopify eCommerce + STN Data Tools | ✅ PCI Compliant | Certified by Shopify. Learn more |
| BigCommerce + STN Data Tools | ✅ PCI Compliant | Certified by BigCommerce. Learn more |
| WooCommerce + STN Data Tools | ⚠️ Not Certified | Provides a framework for compliance; businesses must complete their own PCI survey. Learn more |
| VirtueMart / STN eCom | ❌ Not PCI Compliant | Legacy service, no PCI certification. While still supported for existing clients, we recommend migrating to our Shopify-based solution for a more secure, compliant, and future-ready eCommerce experience. Learn more |
| STN Hosting Servers (via Linode/Akamai) | ❌ Not PCI Certified | Secure infrastructure (firewalls, DDoS, etc.) but not PCI DSS 4.0 certified. Akamai Security |
| SiteGround Hosting | ❌ Not PCI Compliant | No PCI-certified hosting plans; website owner responsible for compliance. (STN offers SiteGround hosting for some WordPress accounts) |
| STN Product Data Tools: Retail Portal, Vendor Portal, & PDBHub | ⚠️ Not Applicable | Secure systems, isolated from card processing; PCI certification not required. |
What This Means for You
While we help create secure, reliable websites and infrastructure, you, the merchant, are ultimately responsible for PCI compliance when processing credit card payments. This typically involves:
- Choosing PCI-compliant platforms and payment processors
- Avoiding direct storage of credit card data
- Completing a Self-Assessment Questionnaire (SAQ) via your merchant services provider
- Working with trusted, secure third-party tools
Our Recommendation
To simplify your path to PCI compliance, we recommend:
- Using our Shopify + STN or BigCommerce + STN service
- If using WooCommerce or other custom solutions, work with a qualified security provider to complete your compliance survey
- Never store credit card data directly on your site or server
- When in doubt, consult your merchant account provider for additional guidance on PCI requirements
Need Guidance?
We’re happy to advise you on platform choices and secure implementation strategies — but remember, PCI compliance is a shared responsibility, and ultimate certification lies with you and your payment processing partners.
📩 Have questions? Let’s talk. Contact us