639 users online
Register
Log in
Shopping Cart
(0)
Home
Product
Overview
Features
Store demo
Screenshots
Showcase - live shops
Copyright Notice Removal
System Requirements
Roadmap
Contribute
Team Members
License
Downloads
Download nopCommerce
Extensions
Release Notes
Support
Documentation
Forums
Partners
Recommended Hosting
Solution Partners
Become a Partner
Community sponsorship program
My Account
Contacts
Tweet
Home
/
Forums
/
General
/
Security
/
Storing Credit Card Info Nop DB?
Storing Credit Card Info Nop DB?
Reply
kishore2u
Total Posts:
2
Karma:
10
Joined:
4/21/2011
Location:
United States
PM
Posted:
6 months ago
Quote
I was wondering how to access Credit Card info like Card Type/Card Number/Exp DT/CCV number from the Nop_Order Table.
I see all these columns are blank except MaskedCreditCardNumber in my table, and Also see "AllowStoringCreditCard" column with 0 populated. For my Quick Books Data Extraction i need all this info as we process refunds from QuickBooks.
Can some one help me out to store credit crad in the Nop_Order Table?
Thanks in advance.
0
Please
login or register
to vote for this post.
(click on this box to dismiss)
a.m.
Total Posts:
6508
Karma:
44322
Joined:
10/22/2008
Location:
Russia
PM
Posted:
6 months ago
Quote
Credit cards are not stored into database according to
PA-DSS
2
Please
login or register
to vote for this post.
(click on this box to dismiss)
Andrei Mazoulnitsyn,
LinkedIn - http://ru.linkedin.com/in/mazoulnitsyn
Twitter - http://twitter.com/#!/nopCommerce
Facebook community page - http://www.facebook.com/pages/NopCommerce/108282972527146
Google+ page - https://plus.google.com/100073150079669136049
matchgig
Total Posts:
23
Karma:
133
Joined:
10/7/2010
Location:
United States
PM
Posted:
4 months ago
Quote
There should never be an instance where you need to store the creditcard info. Your payment process should provide an interface for any returns or refunds. If not then you should find a new payment processor.
PCI requirements require that you explicitely can demonstrate a need to store the information but once it is being stored any and all servers/laptops/mobile devices you might use to access it are then subject to the security requirements and you will be held accountable for any breaches to that security. A breach can become extremely expensive to you if that occurs.
2
Please
login or register
to vote for this post.
(click on this box to dismiss)
Steve Christensen
Superior IRON-ARTz LLC
Where industry and art collide!
http://www.IRON-ARTz.com