New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Is a hosting company Legally Required to have a SSL?
I was wondering is there a Legal Requirement to have a SSL where clients enter sensitive information. as I found this UK Company who seem to want to bash me for a License error but does not even have a SSL on their site. and seems they have been registered for 9 years. why would anyone even buy from them when they don't even have a SSL.
epichosts.co.uk is the URL
Comments
LowEndLawyers
LowEndCourt
It doesn't matter if you can't afford a solicitor
Don't think it's a legal requirement, though a good idea.
If they are storing Credit Card data, then they need to meet PCI Standards. https://www.pcisecuritystandards.org/
With them not having an SSL, I'd probably not go ahead and purchase from them, based on how easy it is to get a SSL (Free, or paid for) and install it... (like a 3-step process in cpanel?)
That's actually an interesting question. In the Netherlands, when the new data security regulations start taking effect, it's very likely that it will be legally required to use TLS. I don't know about the UK, but it's not a far-fetched situation.
Either way, if I'm not mistaken... if they are processing CC payments themselves, PCI requirements involve TLS as well, so they'd be at the very least in breach of terms of their CC vendor.
@joepie91
Ha! Wouldn't be shocked if in the UK they soon make it legally required to not have SSL.
http://www.bbc.com/news/technology-30794953
I love the backdoor image haha
Does the picture of Judge Judy appear to move for anyone else? I'm freaking out.
nope but she does look like an alien.
Can't be animated, its a jpeg.
Why did you buy from them, then?
Well done
Required or not, most implement SSL (for non input sites) because Google stated that https will be favored in results.
https://www.stonetemple.com/how-strong-is-https-as-a-ranking-factor/
She is really a Dalek, but don't go around telling everyone.
The boost that a website gets in ranking in regards to SSL Certificates is so minimal that it shouldn't be considered a ranking factor. Recently Google came forward and stated that though it is beneficial to have a certificate, the boost is so small that uses should continue to focus on other means for optimization.
Looks rock solid to me.
Just to make sure:
Are the lines of this grid moving for you? http://www.dbsv.org/fileadmin/bilder/amsler-gitter.png
The focus is more on Mobile friendly sites nowadays.
There is no legal requirement, but it's a must have in my opinion.
Indeed, wouldn't put my data through Non-SSL - also, EpicHosts you should steer clear, they actually provide "Private Server" packages and a year or so back they did a "Private Server" package for Habbo Hotel - a teenagers game. They currently do RSPS and WoWPS too :P... avoid at all costs.
https://web.archive.org/web/20140120001216/http://epichosts.co.uk/games.htm
No it's not a legal requirement but anyone who runs a business knows how important SSL is (even if there are some holes before which are fixed) but you could contact Ben who owns it: https://www.linkedin.com/in/terrum
But yeah who would use a host who hosts illegal content willingly.
He seriously still calls himself Terrum? He used to do business solely as that - always gives a nice and legitimate feel to things.
Yeah lol DJ Terrum: http://www.terrum.co.uk. The only thing about EpicHosts which I know personally is Jonathan who owned it before he gave or sold it. Can't remember but this was back in 2009.
Ahah, I remember them back in '09 when Private Servers were a big thing - didn't even know they were still going :P.