SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Evangelist spoondevil's Avatar
    Join Date
    Jun 2001
    Location
    Harlow, Essex, UK
    Posts
    426
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    PCI Compliance - Storing CC CV2 - Non SSL

    Hi ya

    I have come across a company that does a lot of business and doesn't have any PCI compliance.

    They store the credit card full details, address AND CV2 in plain text in their database.

    Their external website doesn't even have an SSL!!!

    I know they have a copy of my card details and my father's too. Does anyone know how I would go about reporting this to the correct people. It's based in the UK. I think they bank with Barclays too.

    Ta, Ian

  2. #2
    Non-Member thewebhostingdir's Avatar
    Join Date
    Oct 2005
    Posts
    703
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    What cards do they accept? You can directly notify credit card companies (Visa, MasterCard, etc) whose cards they accept.

  3. #3
    SitePoint Evangelist spoondevil's Avatar
    Join Date
    Jun 2001
    Location
    Harlow, Essex, UK
    Posts
    426
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Cool, I shall do that. I ordered with them over the phone but I now know someone who works for them and they told me about the CV2 numbers in general conversation about their sites and in-office system.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •