|
View Full Version : Please, suggest a payment processor that doesn't require PCI compliance!
greatandrew 12-10-2008, 09:15 AM Please, suggest a payment processor that doesn't require PCI compliance!
I am going to switch to another merchant account right now! Could you please recommend another payment processing provider that doesn't require PCI compliance? All suggestions are highly appreciated here! Thanks in advance!
__________________Search Engine MarketingHost coupons
linux-tech 12-10-2008, 09:25 AM PCI compliance is inevitable. You should be looking at getting compliant, or as compliant as possible, rather than looking for a processor that DOESN'T require compliance.
__________________Linux Tech Networks: Reliable Server Administration and Monitoring since 2002VBulletin Development: VBulletin customizations, development, hosting and leased licenses
jalami 12-10-2008, 09:25 AM If you're going to be handling CC information through your own secure server, and using a processing API for transactions, you need PCI compliance. Any processor that doesn't require PCI compliance for gateway API transactions is violating card industry policies. It's not hard to get, really. What's the main concern, the cost or the server implementation?
__________________
For offshore incorporation, bank accounts and processing solutions visit Emerald Offshore
jalami 12-10-2008, 09:26 AM Quote:
Originally Posted by linux-tech
PCI compliance is inevitable. You should be looking at getting compliant, or as compliant as possible, rather than looking for a processor that DOESN'T require compliance.
100% agreed. Looking for a processor that uses API and doesn't require compliance = looking for trouble.
__________________
For offshore incorporation, bank accounts and processing solutions visit Emerald Offshore
Gate2Shop 12-10-2008, 09:57 AM The payment provider is the one that should be PCI compliant not the merchant, but there are a lot out there and if you talk to a reliable one they will take care of you.
linux-tech 12-10-2008, 10:09 AM Quote:
Originally Posted by Gate2Shop
The payment provider is the one that should be PCI compliant not the merchant
Incorrect
The provider and the merchant BOTH are required to be compliant. While the provider is more responsible, the merchant is equally as responsible (and punishable) if they are not compliant.
__________________Linux Tech Networks: Reliable Server Administration and Monitoring since 2002VBulletin Development: VBulletin customizations, development, hosting and leased licenses
Alex Pher 12-10-2008, 10:23 AM Quote:
Originally Posted by Gate2Shop
The payment provider is the one that should be PCI compliant not the merchant, but there are a lot out there and if you talk to a reliable one they will take care of you.
This may only be true for Third Party/IPSP providers where the cardholder information is processed electronically from their payment page and not merchant's. Please feel free to correct me.
In all other circumstances, merchants are required to adhere to PCI compliance.
Make'n Money 12-10-2008, 09:57 PM Would PayPal work?
zendzipr 12-10-2008, 11:30 PM Quote:
Originally Posted by Make'n Money
Would PayPal work?
Yes. As long as you use the right program.
Any time cardholder data gets into any part of your network, you will be required to show compliance. Another alternative is to use one of the features on authorize.net where you send the user to a payment page on the authorize.net site which works much like payapal but is still your merchant account. Because the cardholder data does not touch your systems, your compliance is much easier and cheaper.
__________________
PCI, HIPAA, Managed Hosting Specialists. ZZ Servers
Affordable PCI compliant hosting solutions.
jalami 12-11-2008, 01:33 AM Quote:
Originally Posted by zendzipr
Yes. As long as you use the right program.
Any time cardholder data gets into any part of your network, you will be required to show compliance. Another alternative is to use one of the features on authorize.net where you send the user to a payment page on the authorize.net site which works much like payapal but is still your merchant account. Because the cardholder data does not touch your systems, your compliance is much easier and cheaper.
Yea some merchants just find it simpler to redirect to the processing gateway's hosted sales page -- no PCI compliance or SSL certificate required.
__________________
For offshore incorporation, bank accounts and processing solutions visit Emerald Offshore
bithost(NET) 12-11-2008, 09:01 AM Quote:
Originally Posted by Gate2Shop
The payment provider is the one that should be PCI compliant not the merchant
This is NOT correct.
Merchants must also be PCI compliant. This is the new reality. Deal with it, or get out of the biz -- it is really that simple.
(Sorry for the tough love, but this is one of those cases where the fringe element is going to try to cheap out or cheat out in scary, truly high-risk ways, and the people who will get hurt the worst are consumers.) Bailey
__________________Fighting mediocre service and newbie-host ignorance one thread at a time.
Last edited by bithost(NET) : 12-11-2008 at 08:05 AM.
|