You could always point him to the myriad news stories that show how people are able to run exploits to download card databases... Personally, I do store them, but on an offline database with encryption. I find that it's easier to process certain customer service issues such as returns.
-----Original Message----- From: Josh Carrico [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 23, 2002 11:29 AM To: [EMAIL PROTECTED] Subject: offTopic: Saving Credit Card Info Sorry for the Extremely off topic question... But, would anyone happen to know any good resources for proving a point to my employer that we shouldn't Store Credit Card information? Apparently Verisign's word to the wise that "credit card numbers (If they must be stored) should be stored encrypted (It is best not to store credit card numbers at all)" AND all the cases of Hackers stealing credit card numbers just doesn't phase them. Thanks in advance. Josh Carrico ==^================================================================ This email was sent to: [email protected] EASY UNSUBSCRIBE click here: http://topica.com/u/?bUrFMa.bV0Kx9 Or send an email to: [EMAIL PROTECTED] T O P I C A -- Register now to manage your mail! http://www.topica.com/partner/tag02/register ==^================================================================
