With the payment gateways these days > there is *NO* need to store CC details.
The need is determined by the online customer and merchant. Online merchants want to be able to allow their customers to save their credit card number for easier checkout when they return. In this case numbers need to be stored. Simply storing a number will not get you fined. However your storage method must be in compliance with the PCI standards. Think about it: if PCI was saying "you may not store credit card information," it would not need to exist, as there would be no need to set a standard. Look at page 3 of the PCI DSS for more information. You can store the number, but not CVV2, Pin or full magnetic stripe. There is no true credit card security, whether you are using your card online or in a physical store. You can only mitigate the risk as much as possible. -- Josh ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 The most significant release in over 10 years. Upgrade & see new features. http://www.adobe.com/products/coldfusion Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:270134 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
