bbodenstein Posted March 5, 2007 Share Posted March 5, 2007 I recently brought up an OSC site with lots of assistance from a developer firm. They basically did it and I am hoping to take over maint. My payment module is Authorize.Net and this was configured by my developer. All seems to be working properly, however... When I receive an email from Authorize.Net, with details of a successful transaction on my site, at the end of the email is a section titled: ======= MERCHANT DEFINED ======== Under that heading appears a number of data fields (apparently or perhaps selected by my developer as he implemented the shopping cart. This maybe is where info about the products purchased or order number or whatever could be passed back, etc. Unfortunately my developer passed back the customers CC data, ie. CC number, Name on card, type of card, expire date, ie. all info needed to use card fraudulent (especially since customer address is also in email). Hmmmm... doesn't seem like a wise place to put this data. My question... where is this "Merchant Defined" data defined and how can I quickly get rid of this in the email back to me. I am sort of familiar with OSC and looked around for the data but was unable to locate. I am having a little difficulty defining the issue to my developer. Can anyone steer me in the right direction. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.