whether or not Save Credit Card Info?
-
hi all, i want to just ask whether or not save credit card info of any customer in database?
-
hi all, i want to just ask whether or not save credit card info of any customer in database?
That would be up to your application and customer requirements, not us. Personally, I think it's a bad idea.
A guide to posting questions on CodeProject[^]
Dave Kreskowiak Microsoft MVP Visual Developer - Visual Basic
2006, 2007, 2008
But no longer in 2009... -
hi all, i want to just ask whether or not save credit card info of any customer in database?
-
hi all, i want to just ask whether or not save credit card info of any customer in database?
I'd say no. To many posablility's of this going very wrong very fast.
-
hi all, i want to just ask whether or not save credit card info of any customer in database?
If you are going to store credit card information in your database, you should be aware that some countries have legal requirements as to what you can and cannot store. Here in the UK the Data Protection Act sets out some very specific conditions regarding credit card details, for example. Failure to comply with these regulations may be a criminal offence depending on your local laws. Credit card companies will also normally put in place various restrictions as to what you may store and how you store it. Failure to comply with these may result in your company being black-listed by the credit card company. All in all, it is a bit of a minefield and I would recommend not to do it unless you really, really know what you are doing. If you need to store credit card data, there are a number of companies that specialise in providing secure services for this sort of thing. More info can be found here: http://www.owasp.org/index.php/Handling_E-Commerce_Payments[^] https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml[^]
-
If you are going to store credit card information in your database, you should be aware that some countries have legal requirements as to what you can and cannot store. Here in the UK the Data Protection Act sets out some very specific conditions regarding credit card details, for example. Failure to comply with these regulations may be a criminal offence depending on your local laws. Credit card companies will also normally put in place various restrictions as to what you may store and how you store it. Failure to comply with these may result in your company being black-listed by the credit card company. All in all, it is a bit of a minefield and I would recommend not to do it unless you really, really know what you are doing. If you need to store credit card data, there are a number of companies that specialise in providing secure services for this sort of thing. More info can be found here: http://www.owasp.org/index.php/Handling_E-Commerce_Payments[^] https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml[^]
I've worked on at least one project that wanted to store this data and I talked them out of it. It's just safer to be able to say 'we never even stored it'.
Christian Graus Driven to the arms of OSX by Vista. Read my blog to find out how I've worked around bugs in Microsoft tools and frameworks.
-
hi all, i want to just ask whether or not save credit card info of any customer in database?
I would have to agree with the comments made already. In todays security/information aware evironments, i don't think it is advisable to store the details, unless you absolutely must, and then you better be 100% sure your solution is secure. If you got hacked and it became public knowledge that the details were stolen, just think of the hassle, and potential loss of business through reputation. I think the majority of customers now adays would prefer card details on demand payment.