When accepting Credit Cards you must be aware of your obligations to protect your customers credit card information. This means that you should not store credit card information in an unsafe way and you must comply with the Provider Card Industry Data Security Standards - PCI DSS.
PCI DSS is a set of security standards developed by the world's major credit card companies, including Mastercard, Visa and American Express. It is aimed at businesses that process credit or debit card transactions and consists of 12 control objectives to protect data.
If you use a reputable payment service provider then most of these issues will be handled by them. If you take credit card data on your web site using the manual credit card payment method then you need to be aware of the risk.
The 12 key guidelines are:
If your web site is hosted by eCorner (using ePages) then we comply with items 1 - 6. Item 2. relates also to your own MBO and that password is your responsibility. Items 7 - 12 are entirely under your control as the store owners and we would urge you to review these. eCorner strongly recommends the use of a reputable Payment Service Provider.
Our Cloud Shop packages support a range of 3rd party payment gateways, including eWAY, SecurePay, Payment Express (DPS), TNSI, PayPal and WorldPay.
All our stores are compatible with a range of flexible manual payment methods, which can all be enabled on demand at no extra cost.
Payments presentation from Online Retailer updated as at June 2013