I'm evaluating nop Commerce and so far I'm impressed. I currently use Magento, but this is a breath of fresh air.
I need some help. I set up CyberSource as a credit card processor, but I'm surprised to see the full credit card numbers being stored in the database (hashed, but fully present).
So far, here what I've tried:
1. I tried it with Enable Tokenization both checked and unchecked.
2. I disabled and then uninstalled Manual Processing.
3. I downloaded and installed the newest version of the CyberSource module.
We don't want to store the credit card number. How can I keep the full card number from being stored in the Order.CardNumber field?
CyberSource Payment Plugin Appears to be Storing Full Card Numbers
Team Member
- 879
- 9286
- 1/11/2016
Suppose you are referring to our Payments.CyberSource plugin, the card details are only saved in orders if "Payment connection method" is set to "REST API" on the plugin configuration page. In this case, it's assumed that the merchant takes full responsibility for data processing and storage, including responsibility for PCI DSS compliance.
if "Payment connection method" is set to "Flex Microform", then responsibility passes to the CyberSource service, which processes and stores the data on its side.
if "Payment connection method" is set to "Flex Microform", then responsibility passes to the CyberSource service, which processes and stores the data on its side.