M
Mark Biamonte
Guest
Is the customer looking too know whether the credit card information that D2C uses for billing is processed in a PCI compliant manner or are they looking to see if they can use D2C to transmit credit card or other payment information as part of a larger system that needs to be PCI compliant? The answer to the first question is that all credit card and billing information is handled by an external system (Aria) which is PCI compliant. The second question I believe is what Bill is referring to. To answer his OData question, OData would be the same as the xDBC drivers with regards to what it does to the data. The xDBC drivers translate the data from the format it receives it from the data source to a standard ODBC or JDBC format. OData does the same thing. It translates the data format from the data source to a standard OData format. It just happens to go through JDBC in doing that. That all being said, we have not done anything with regards to certification for using D2C in a PCI system. Like Bill mentions the data is encrypted on the way into and on the way out of D2C and it is not stored in D2C so it may be fine, but without going through a certification ourselves its hard to say.
Continue reading...
Continue reading...