You should never ever store credit card information yourself regardless of who your hosting provider is. There are too many laws, regulatory issues and general risk around that.
On May 14, 5:24 pm, "romain.lefebvre" <[email protected]> wrote: > So do you say we must not store credit card information in datastore? > Even if we encrypt these information? > Even if we try to be compliant with PCI? > > If I can't store these information then I can't use App Engine to make > an online store for example (except of course if I don't store credit > card information and use 3rd party, but hey I don't want to do > this...) > > I am waiting for your answer. Thanks! > > On 13 avr, 13:33, "Ikai L (Google)" <[email protected]> wrote: > > > > > > > I think there are very strict laws regarding social security numbers and > > credit card storage. With regard to credit card numbers, I recommend using a > > third party service that is PCI compliant. I'm not sure about the legality > > of storing social security numbers, and if you are storing health > > information, make sure you research HIPAA privacy policies. > > > FYI we do not generally screen for inappropriate content. This is your > > responsibility. We will send you warnings if we receive them. > > > On Mon, Apr 12, 2010 at 2:49 PM, Denis <[email protected]> wrote: > > > So I have read through the app engine Terms of Service | Privacy > > > Notice | Program Policies documents and I think I am understanding > > > that Google will only use the datastore data as far as it needs to to > > > keep my site running and to screen for inappropriate content. It > > > doesn't say it explicitly but I assume it will not mine this data in > > > any other way, and I should feel safe that my data will never be made > > > available to anyone other than for the purpose of running the site for > > > me. This seems like what any data hosting operation would offer. > > > > But not being a lawyer, and not having the money to ask this question > > > of one (I write apps for low budget not-for-profits), are companies > > > putting sensitive data in app engine? I don't think I would use it > > > for anything more sensitive than contact information, but I am curious > > > if others in this group are storing socials and or credit card > > > numbers? > > > > Any thoughts and/or further documentation would be appreciated. > > > > Thanks. > > > > -- > > > You received this message because you are subscribed to the Google Groups > > > "Google App Engine" group. > > > To post to this group, send email to [email protected]. > > > To unsubscribe from this group, send email to > > > [email protected]<google-appengine%2Bunsubscrib > > > [email protected]> > > > . > > > For more options, visit this group at > > >http://groups.google.com/group/google-appengine?hl=en. > > > -- > > Ikai Lan > > Developer Programs Engineer, Google App > > Enginehttp://googleappengine.blogspot.com|http://twitter.com/app_engine > > -- > You received this message because you are subscribed to the Google Groups > "Google App Engine" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group > athttp://groups.google.com/group/google-appengine?hl=en. -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
