[balinor]

Dog and Acqua - here's the low down:

PA-DSS compliance means the cart you use has to meet a set of standards, this is different from the basic PCI compliance which deals with your server and how you handle CC info. So even if you don't store CC inf (and you should NEVER store CC info), and your scan comes back clean, you still need X-Payments if you want to process credit cards through a gateway on your site. X-Cart itself won't be compliant (until 4.4 or higher, who knows) but X-Payments will sort of bypass that requirement - all cc info will go through the X-Payments module. So yes, everyone who processes CC data through their web site (and not on a third party site like PayPal, Google Checkout, Authorize.net SIM, etc) will need this module.

Acquamarina, if a customer does not enter cc info on your site, you don't need to worry about it. This has nothing to do with the partial payment issue you linked, that is a completely different problem that won't be solved by X-Payments. That requires some customization to the Authorize.net payment module, which Qualiteam has yet to address, but you still have a year until that kicks in.

Hope that clears it up a little.