Thread: Upcoming X-Cart v 4.4.6 (now renamed to 4.5.0) & PCI-DSS requirements
View Single Post
  #237  
Old 07-05-2012, 05:26 AM
 
adriant adriant is offline
 

Senior Member
   
Join Date: May 2006
Posts: 190
 
Default Re: Upcoming X-Cart v 4.4.6 (now renamed to 4.5.0) & PCI-DSS requirements
I think that some people may be missing the fact that if you use a virtual terminal and process cards manually and don't collect the CC info on your site you still need to go throught the PCI compliance and pass the certificate info to your merchant bank.

We just went through this and they will test the router that your computer uses to pass the CC details when you use a virtual terminal.

If you collect the CC details via your own cart, to use on your virtual terminal, or even your handheld terminal, then your server needs to be tested and proved secure.

If you use a VOIP phone line, or even skype type services, then the router that the voip phone is connected to needs to be tested.

Its all about how the CC data is collected and processed.

Adrian
__________________
Xcart gold Plus V4.7.12
REBoot(REdux)

https://www.serpro.co.uk