aerotect Posted January 15, 2009 Share Posted January 15, 2009 Hi all, I'm looking to install the Credit Card with Cvv2 for RC2a and i noticed the August 8th correction mentions: Please note that any store that uses this contribution also NEEDS to use one of the credit card number encryption contributions and modify it to encrypt the CVV2 as well. As a further precaution I would also install one of the contributions that erases the credit card number when it is no longer needed and modify that to erase the CVV2 as well. Erasing the CVV2 when it is no longer needed is probably also necessary to comply with banking regulations that prohibit a merchant from retaining the credit card security code any longer than is needed to process the order. I will be installing a more updated version, but does this remain true? Is it needed for the cvv2 contribution to function? I understand the regulations with retaining cvv2 code, but I could simply delete orders as they are processed. My understanding from my host is that my shopping cart is already secure, so is additional encryption needed? Lastly, does anybody have the link to an encryption contribution, and how would I alter it to encrypt cvv2 as well. Lot's of questions, I know... Thanks in advance, J Quote Link to comment Share on other sites More sharing options...
Guest Posted January 15, 2009 Share Posted January 15, 2009 I understand the regulations with retaining cvv2 code, but I could simply delete orders as they are processed. Doing so means that you have retained the information in your database (however brief that time may be). Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.