SSL - Secure Socket Layer can be obtained via a Security Certificate. However, it only covers the transfer of sensitive data not the storage of it. Lately even very large commercial sites have fallen victim to the gathering of private, sensitive data. Please remember that while the data is kept in an encrypted state during transmittal, once it gets to it's final destination it is unencrypted and can be mined just like anything else on a server if someone set their minds to do it.

I use and have used for some time a service called VitalESafe. VitalESafe stores sensitive data and keeps it in an encrypted state on the server so that it can only be unencrypted by its user that has a secret key that once logged in unencrypts the data for that one person only. It also allow the sharing of these encrypted files with users designated by the client.

If sensitive data must be stored on the server then we at MTS highly recommend sending the data automatically to a storage system like VitalESafe and removing the data off of the server altogether.