Default HubSpot Blog

Current Articles | RSS Feed RSS Feed

Credit Card Re-bill Without Storing the Customer’s Credit Card Number

Posted by Alex Neir on Tue, November 29, 2011 @ 12:20 PM
Credit Card Re-Bill

How does a business re-bill a customer’s credit card after a purchase has been made? Doesn’t storing the customer’s credit card information open up potential liability for a business if that information is breached? These are very common questions related to payment processing with credit cards.

A credit card re-bill is common for businesses that have repeat customers or recurring billing options. It is often an added convenience to offer customers the ability to retrieve their credit card information rather than re-entering it.

For a business to store customer credit card information there are strict Payment Card Industry Data Security Standards (PCI-DDS) that must be adhered to. Credit card information is a primary target for identity thieves and as a result has come under stiffer protection regulations. Designing a properly protected and compliant credit card storage system can be an expensive and cumbersome undertaking.

So how can my business store customer credit card information cheaply and securely?  

The simple answer – outsource the storage. By letting a third party store the customer’s credit card information the business gains all benefits of card information retrieval with zero liability. Outsourcing credit card data storage is a simple, fast, cheap and headache free option that is offered by a number of providers as part of their gateway services. A few of the companies offering this service include The Maxx Payment Gateway, Network Merchants and Authorize.Net.

How does it work? 

Customer credit card information is stored off-site on secure computer servers managed by the company offering the service. Each individual customer’s information is accessible via an online interface or your businesses website (cloud service). A unique key is used to access the customer information and retrieve the credit card details for re-bill purposes. This functionality is typically pre-built and offered as a plugin to the overall virtual terminal or payment gateway service. Since the sensitive data is stored off-site with secure encryption used for retrieval, PCI compliance is maintained and your businesses liability is minimized.

Proper storage of sensitive information entrusted to your business is an important responsibility. Please contact our knowledgeable staff for more information about a credit card re-bill solution for your business. (800)917-8026

Tags: Payment Gateway, PCI Compliance, Credit Card Re-Bill

PCI Compliance – What it is and why it’s important

Posted by Alex Neir on Fri, July 08, 2011 @ 12:24 PM
PCI Compliance

PCI Compliance – What it is and why it’s important

What is PCI compliance?

PCI compliance boils down to compliance with a set of rules defined as the PCI DSS or Payment Card Industries Data Security Standard. The PCI Security Standard has been established by the major credit card associations as guidelines for the collection of credit card information. These guidelines have been established to prevent fraud and to minimize credit card security threats.

In order to achieve PCI compliance a business must have dedicated policies and procedures in place that define how credit card holder information is collected, transmitted and stored. If a technical system is used to collect credit card holder information, the system must demonstrate encrypted transmission and storage.

Why is PCI Compliance important?

Let’s face it, as credit card carrying consumers we all have sensitive  data about ourselves collected transmitted and stored many times every day. With all that information being collected by so many individuals, businesses and charities it is very important that information is protected. As identity theft continues to grow the tolerance for mismanagement of credit card holder information is disappearing. The major credit card association have begun to institute large monetary fines for businesses that are found to have compromised credit card information.

Get compliant by selecting a vendor that manages your PCI compliance for you. Maxx Merchants is 100% PCI compliant.


Click me

Tags: PCI Compliance, Credit Card Fraud, Merchant Account Education