Posts Tagged 'Tech Partner'

October 5, 2012

Spark::red: Tech Partner Spotlight

This guest blog comes to us from Spark::red, a featured member of the SoftLayer Technology Partners Marketplace. Spark::red is a global PCI Level 1 compliant hosting provider specializing in Oracle ATG Commerce. With full-redundancy at every layer, powerful servers, and knowledgeable architects, Spark::red delivers exceptional environments in weeks, instead of months. In this video we talk to Spark::red co-founder Devon Hillard about what Spark::red does, how they help companies that are outgrowing current solutions, and why they chose SoftLayer.

The Three Most Common PCI Compliance Myths

As a hosting provider that specializes in Oracle ATG Commerce, Spark::red has extensive experience and expertise when it comes to the Payment Card Industry Data Security Standards (PCI DSS). If you're not familiar with PCI DSS, they are standards imposed on companies that process payment data, and they are designed to protect the company and its customers.

We've been helping online businesses maintain PCI Compliance for several years now, and in that time, we've encountered a great deal of confusion and misinformation when it comes to compliance. Despite numerous documents and articles available on this topic, we've found that three myths seem to persist when it comes to PCI DSS compliance. Consider us the PCI DSS compliance mythbusters.

Myth 1: Only large enterprise-level businesses are required to be PCI Compliant.

According to PCI DSS, every company involved in payment card processing online or offline should be PCI Compliant. The list of those companies includes e-commerce businesses of all sizes, banks and web hosting providers. It's important to note that I said, "should be PCI Compliant" here. There is no federal law that makes PCI compliance a legal requirement. However, a business IS required to be PCI compliant technically in order to take and process Visa or MasterCard payments. Failure to operate in with PCI compliance could mean huge fees if you're found in violation after a breach.

Payment card data security is the most significant concern for cardholders, and it should be a priority for your business, whether you have two hundred customers or two million customers. If you're processing ANY credit card payments, you should make sure you are PCI-compliant.

There are four levels of PCI compliance based on the number of credit card transactions your business processes a year, so the PCI compliance process is going to look different for small, medium-sized and large businesses. Visit the PCI Security Standards Council website to check which level of PCI compliance your business needs.

Myth 1: Busted.

Myth 2: A business that uses a PCI-compliant managed hosting provider automatically becomes PCI-compliant.

Multiple parties are involved in processing payment data, and each of them needs to meet certain standards to guarantee cardholders' data security. From a managed hosting provider perspective, we're responsible for things like proper firewall installation and maintenance, updating anti-virus programs of our servers, providing a unique ID for each person with computer access to restrict access to the most sensitive data, regular system scanning for vulnerabilities. Our customer — an online retailer, for example — would need to develop its software applications in accordance with PCI DSS, keep cardholders data storage to a minimum, and perform application-layer penetration tests that are out of their hosting provider's control.

If you're pursuing PCI compliance, you have a significant advantage if you start with a PCI-compliant managed hosting provider. Many security questions are already answered by your PCI-compliant host, so there is a shorter list of things for you to be worry about. You save money, time and effort in the process of completing PCI certification.

Myth 2: Busted.

Myth 3: A business that uses SSL certificates is PCI compliant.

Secure Sockets Layer (SSL) certificates allow secure data transmission to and from the server through data encryption that significantly decreases the network vulnerabilities from IP spoofing, IP source rooting, DNS spoofing, man-in-the-middle attacks and other threats from hackers. However, SSL cannot protect cardholder data from attacks using cross-site scripting or SQL injection, and they don't provide secure audit trails or event monitoring. SSL certificates are an important part of secure transactions, but they're only part of PCI DSS compliance.

Myth 3: Busted.

If you have questions about PCI compliance or you're interested in Oracle ATG Hosting, visit Spark::red, give us a call or send us an email, and we'll do what we can to help. When PCI compliance doesn't seem like a scary monster in your closet, it's easier to start the process and get it done quickly.

-Elena Rybalchenko, Spark::red

This guest blog series highlights companies in SoftLayer's Technology Partners Marketplace.
These Partners have built their businesses on the SoftLayer Platform, and we're excited for them to tell their stories. New Partners will be added to the Marketplace each month, so stay tuned for many more come.
June 15, 2011

Relenta: Tech Partner Spotlight

We invite each of our featured SoftLayer Tech Marketplace Partners to contribute a guest post to the SoftLayer Blog, and this week, we're happy to welcome Dmitri Eroshenko from Relenta. In his guest post, Dmitri explains Relenta's inspiration and history to help you better understand how Relenta's online app can benefit your business.

Relenta

Company Website: http://www.relenta.com
Tech Partners Marketplace: http://www.softlayer.com/marketplace/relenta

Relenta: Get Things Done with One Click

We're all suffocating from information clutter. Our customer data and communications are scattered all over the place — multiple email accounts, social networks, CRMs and contact managers, instant messengers and chats, spreadsheets, various productivity and collaboration apps, calendars, and so on. We enter and re-enter data in different apps, which we endlessly cross-reference to reconcile discrepancies. We worry constantly that we're missing something.

At some point, we reach the threshold where pain becomes unbearable, stop and say, "There must be a better way!"

Our small software development team started working on Relenta six years ago with these very words. The idea was to take several apps our team used regularly — including email, of course — and distill them into one single program. Soon after we started building the program, we realized that by storing different types of customer records in the same backend database, we'd actually only begun the process of consolidating the information ... And that's where we started building Relenta's interface to truly streamline the process.

Instead of displaying various bits of customer information on separate screens, we created an interface that aggregated ALL data in one single activity stream. These "news feeds" provide at-a-glance views on the history of each of the customer relationships being tracked by the system. The feeds also put you in a one-click zone, from which no information is more than a single click away and no activity takes more than a single click to perform.

The rest is history. Today, Relenta is an elegant online application that lets you organize your entire customer-related life so that nothing is more than one click away.

The idea of building our platform around the one-click zone became our mantra and guiding principle. To put you into a one-click zone,
Relenta offers:

  • A unified inbox for all customer communications, including email and social network messages from LinkedIn, Facebook, and Twitter
  • A centralized platform for contact management, shared calendar, internal messaging, workflow management and document management
  • A built-in email marketing and email-autoresponder solution
  • A product philosophy that emphasizes disciplined process management and minimizes the number of steps it takes to get things done
  • A framework that enables asynchronous and geographically dispersed collaboration by keeping everyone and everything on the same page

As a result of this streamlined workflow, your data isn't fragmented or unnecessarily duplicated across your systems and you can be more efficient in your operations. By interlinking all communication activity between our team and each customer, we found ourselves getting twice as much work done in half the time.

If you find yourself bouncing between platforms to manage your customer relationships, Relenta might be a great fit for you. While I can talk about the value Relenta can provide and send you as many customer testimonials as you want to read, what matters is whether the app meets your needs. Check out our Live Demo and sign up for a Free Trial to put us to the test.

-Dmitri Eroshenko, Relenta

Join the one-click revolution at www.relenta.com!

Subscribe to tech-partner