remember credit card info
- Thread starter champions
- Start date
- th_trl_thread_readers 0
- Status
To protect both you, and us. Yes it would be easier if the info was saved but I just don't feel it is in anyone's best interest for the data to be saved. Err on the side of caution 
To protect both you, and us. Yes it would be easier if the info was saved but I just don't feel it is in anyone's best interest for the data to be saved. Err on the side of caution
I tend to agree. In this day and age of website hacking, etc, it's best to leave the least amount of information behind after a transaction.
I am the lead developer of a POS system, and can honestly say that PCI compliance is a big pain, and a huge cost. It isn't something that I think we want David to have to go through. His prices would never be the same.
Sent from my Galaxy Tab 7 Plus using Tapatalk.
Sent from my Galaxy Tab 7 Plus using Tapatalk.
pci compliance may be a pain, but we go through it for our customers. let's protect everyone. folks ask us if they can call in an order with cc. no we can't so that info is not written down anywhere. let's protect all of us
pci compliance may be a pain, but we go through it for our customers. let's protect everyone. folks ask us if they can call in an order with cc. no we can't so that info is not written down anywhere. let's protect all of us
Do you submit your code and database for PCI audits, or do you use a PCI compliant backend? Since we handle the whole solution (system, OS, database, application, etc.) we had to go through a complete audit. That included sending a whole system to Trustwave (who we used), in order for them to do forensics. We also had to give them all of the sources. It took almost 9 months for the entire PCI audit.
We write the software for our signature pads too, and that was an even bigger pain. Luckily, they were PCI-DSS devices, and the embedded OS was already PCI certified (Verifone).
Now we have to deal with mini audits, every time we do a version update. It is a pain. We were able to get it handled fairly well though, and the whole audit was under $30,000. We were going to handle the payment systems internally, but we realized that the audit was going to cost around $150,000, and all of our employees would have to go through background checks.
Obviously, we do all of this, so our customers don't have to. They just have to do the annual $250 audit. It also makes our solution more attractive.
We only work with independent pharmacies, and they already have to deal with third party audits for prescription coverage, HIPAA audits, DEA audits, etc... The easier it is for them, the better.Oh, on a non work related subject, I sent you a PM the other day. Check it out, and let me know.
Also, I've sent you about 9 customers in the past couple of months. Is there any "brownie points" I get for those? How do I make sure that you know which ones I sent you?
we go through our credit card processors thrid party audit and review process. We have it done routinely every month
- Status
Similar threads
