Comments on: Securing Customer Data: 7 Precautions For Accepting Credit Card Payments

By: Authorize.net shopping cart

Authorize.net shopping cart — Tue, 12 Aug 2008 19:26:46 +0000

Some of the bigger gateways call this feature a “wallet” and is beginning to handle functions that were once handled by the shopping cart including customer contact data. In fact, his article mentions what to do if your credit card data is stored unencrypted–actually, according to PCI security standards, this should never be the case. Oh and NEVER store or write down the CVV2 (security card code) from any credit card. This is really only to be known by the card holder.

By: Jeff from Credit Card Fraud Forum

Jeff from Credit Card Fraud Forum — Mon, 11 Aug 2008 23:12:26 +0000

Yes, one of the biggest risks I’ve heard from is when credit card numbers are stored. When the merchant processor stores the customers credit card info on their end, and allows you to access it only to make a refund. This takes a huge liability away from you now and believe me, I’ve heard of someone on the forum that sued a store because they kept his credit card number on file. The other tips are vital too, but I think the mistake of storing numbers is usually what bites most people in the butt.

By: merchant services

merchant services — Mon, 10 Mar 2008 01:07:50 +0000

I would add the the best way to ensure you are fully compliant, secure, with 100% uptime is to choose a high qualify virtual terminal/gateway provider such as Authorize Net or Verisign PayFlow. Anyone with a server can create a payment gateway but these companies have the necessary resources and experience to make sure date is secure, is processed 24×7x365 and both have APIs that are compatible with most shopping carts. Do yourself a favor – pay a little more and invest in quality up front and you will avoid the headaches later on.