W.R. de Boer wrote: > > > As far as I am aware you aren't allowed to store credit card numbers > yourself without a weekly security audit from the card issuer... >
I don't think that is the case. You need to have a business use for storing credit card data and of course, it then needs to be encrypted and only certain parts of allowed to be stored. For instance, CVV2 or track discretionary data storage is a no, no. https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml -- Warm Regards, Lee
