Quote:
Originally Posted by Muad'Dib
This.
There are strict PCI regulations in place that don't allow you to store this kind of data.
(unless you're licensed for it and have Fort-Knox like facility)
|
We are PCI-DSS Authorized as in approved. I said Compliant as compliant with our licensing. Most larger e-commerce businesses are PCI-DSS now.
What I meant; is that PCI regulations prevent cross sharing of customer financial data with any third party (not a part of the transaction)-- so does HIPPA in the USA (medical data).
If Mitch says Netbilling uses tokens over the internet that would be ok as we use tokens also on the public IP facing network.