And don't forget, Amazon has the megabucks to spend on security.
If for some reason you decide that storing credit card numbers is an
absolute necessity, make sure you disclose that fact fully, encrypt the data
thoroughly, and make storage optional. The typical;
"X remember this credit card for future purchases"
Should work well, especially if you default it to false.
"Ken Cox [Microsoft MVP]" <BA************@sympatico.ca> wrote in message
news:OR**************@TK2MSFTNGP15.phx.gbl...
Okay, but you may run into some difficulty with the credit card companies.
They'll want to send someone to ensure that everything is being handled
securely.
"Arne" <Ar**@discussions.microsoft.com> wrote in message
news:AC**********************************@microsof t.com...I think storing the credit card could be an option. If amazon.com can
safely
store my credit card I should also be able to store credit cards at my
site.
"Ken Cox [Microsoft MVP]" wrote:
Hi Arne,
It is unwise to store credit card numbers. It most cases, you pass the
card
number and other information over a secure connection to the gateway
but don't keep track of it yourself.
There's a lot to learn in this area. You might want to get started by
using
the Payflow Pro component and documentation from here:
http://www.verisign.com/products-ser...ndex.html?from
=ql017Ken"Arne" <Ar**@discussions.microsoft.com> wrote in
messagenews:8F**********************************@m icrosoft.com...> What
would be a good component for processing credit cards?> (I am not using
commerce server.)> Would I need to encrypt the credit card column in
the database?