STN Testimonials
Socialize with us
 view our facebook page visit our youtube site visit our blog tweet us
Search our site
Learning Express Getting Started
Testimonial - wedgits
Your Store Demo link
ASTRA Member

Cleaning Up Credit Card data

In order to maintain a secure online shopping experience for your customers and to help you comply with the Payment Card Industry compliance standards (commonly called "PCI"), Specialty Toys Network has implemented the Remove Credit Card Numbers function for your cart system. This tool will allow you to delete the credit card number from your orders while still keeping the orders in your system.

The new tool gives you two options:
Once you have processed the credit card from an order you can delete it from the order by clicking on Remove Number button. If you want to clean out all the credit card numbers from past orders, you can accomplish this by choosing Remove All Card Numbers in the drop menu for Orders. This action will delete all numbers form all orders in your cart system. Please keep this in mind  - especially if you have new orders that have not been processed. Both of these actions are permanent, and once completed we cannot recover the number.

(Help Page: Remove Credit Card Numbers )

If you have performed this Credit Card Cleanup prematurely, you will need to contact your customer to request their credit card details. Your stored purchase order will have the customer's phone number and email address. Feel free to use this opportunity as a way to insure to your customer knows how secure your site is. They can feel secure knowing that their credit card number will be completely deleted after it is processed.

What is PCI?

The PCI Compliance standard was established in September 2006. It outlines a set of requirements for all companies that process, store, or transmit credit card information. These requirements are based on the number of transactions a business processes. Most small business will fall into the Level 4 Merchant category (less than 20,000 card transactions/year). You can perform a Self-Assessment Questionnaires (SAQ) to determine if your business is following the recommended guidelines for protecting credit card info.

You can use these links to get more information about the PCI compliance, and how it affects your business:

An overview of PCI (basic FAQs)

Self-Assessment Questionnaires (SAQs)  

 
Level 4 Merchants should self-certify that they are following these practices:
1. Install and maintain a firewall configuration to protect cardholder data
2. Do not use vendor-supplied defaults for system passwords and other security parameters
3. Protect stored cardholder data
4. Encrypt transmission of cardholder data across open, public networks
5. Use and regularly update anti-virus software
6. Develop and maintain secure systems and applications
7. Restrict access to cardholder data by business need to know
8. Assign a unique ID to each person with computer access
9. Restrict physical access to cardholder data
10. Track and monitor all access to network resources and cardholder data
11. Regularly test security systems and processes
12. Maintain a policy that addresses information security

 

Specialty Toys Network does its best to stay on top of any new laws like the CPSC or PCI that affect your site, however we are not lawyers. Any information we post is intended for informational purposes only, and should not be construed as legal advice. Feel free to send us your comments and thoughts - we appreciate your help to keep us updated as things change.

 
< Prev   Next >

Site Map

Copyright © 2006-2010. Specialty Toys Network is a service mark of Gearbox Studios, Inc. All rights reserved.
Specialty Toys Network    |   421 NE 3rd Street, Suite 3    |   McMinnville, Oregon 97128 .