• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 306
  • Last Modified:

ecommerce offline cc processing gateway

I'm just trying to get info on the complex PCI IT topic.  Looking for what methods are out there to resolve an issue as I'm coming to understand it.

1. webstore SaaS solution that allows us to create storefronts and customers buy things from their storefront.
2. we use Paypal(not sure which one) as the gateway for offline order processing.
3. Reportedly SaaS company isn't PCI compliant b/c they don't hand off to the gateway (paypal) for the user to pay with cc info.
4. We need to be able to easily have the customer process a refund without having to do this manually through gateway(paypal). Is how i hear we're doing this.

So are there any best practices API angles or ASP.NET or '3rd party'  products/"ROUTES" that I can investigate to meet the need on line 4?

Trying to understand the flow of how people are dealing with this when a SaaS solution is involved and you're processing payment soffline via a gateway like paypal and needed to easily do refunds post authorization or pre authorization without touching/storing the customer cc. Dont want to store data on any of our servers either.
0
dee30
Asked:
dee30
1 Solution
 
Brian ClausenCommented:
Hi,

I would consider the following:

1. Fast Spring - this should provide a hosted payment page that will handle payment capture, payment processing and PCI.

2. Braintree Payments - this will provide a development platform that allows you to hand off the payment processing and PCI requirements to Braintree. It will require some development on your end.

3. Amazon Flexible Payment Service (FPS). This will likely require some development on top of their APIs.

Each of these should allow you to process payment without storing customer payment data. These will offer different approaches regarding whether you build the front-end on top of third party APIs or whether you use a payment page hosted by the third party provider.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now