Best credit card processor for PCI compliance?

[sljgold]

I'd like process credit cards through my WHMCS account but I'm running into a snag: every payment gateway API that I've looked at processes the credit cards through my servers and not completely offline at the credit card processor. I want to eliminate the storage or transmission of any credit card information to make it easier to become PCI compliant. I know there are payment gateways that promise this, but the built in WHMCS APIs that I've looked at don't seem to support this function or they only do it for recurring payments, not for one off payments.

 

Does anyone have any suggestions here? I'm hoping that one of the existing payment gateway APIs will work. I'm really not the best at programming.

 

Any help or advice would be greatly appreciated!

[sljgold]

No thoughts on this?

[bear]

Paypal takes them to their site, for one.

We're using the Quantum gateway (vault) ourselves. None of the card is stored or accessed in our install, it connects to their service and does it all there. Rebilling contacts the service, and they process it. All rather neat and tidy, and working well for us.

[sljgold]

Thanks, bear! Do you use the Vault for both single payments and recurring billing? I'd looked into using it but couldn't figure out how to get the single payment option to fully transmit credit card information through Quantum's servers instead of using the WHMCS payment form hosted on my local server.

[bear]

It's worked for me with recurring and single orders like domains, right out of the box.

[easyhosting]

I'd looked into using it but couldn't figure out how to get the single payment option to fully transmit credit card information through Quantum's servers instead of using the WHMCS payment form hosted on my local server.

 

As i am in the UK Quantum is not available to use, but i assume they are like Paypal, 2co, Sage and others in that a client will order through your own WHMCS order form/payment form and then to take the actual; payment they are directed to the payment gateways own website, so no payment card details are ever stored locally on your own install.

[JFOC]

2checkout working great for us

[nanghost]

I'll recomend Authorize.net. Is the best of te best in PCI compliance. Because I have a long time using it, I have a very good price for it... very very cheap... Just $17.95 per month. <<removed affiliate link>>

Edited September 25, 2012 by bear
aff linking

[sljgold]

Thanks, everyone! We've tried Quantum but it's using our order form to transmit the credit card data which means that we are still on the hook for PCI compliance. They need to have no CC data stored or transmitted. I like authorize.net as well, but the WHMCS API for it has the same problem that Quantum's has - they both use the WHMCS forms to transmit CC data. Also, there's a weird error we're seeing with customers who had used the Quantum Vault and switched over to Authorize.net CIM; the system won't recognize it as a new entry to the CIM and so it tries to modify existing credit card info instead of creating a new user. End result: the transaction fails, every time.

 

I'll look at 2checkout.

 

Thanks again!!

[CCSupport]

I'm based in the UK and had the same issues.... However Worldpay sorted it all out. UK based, external CC handling. Plus they do the payment page with your logo on it and recurring payments

 

**Edit** Forgot to mention that they also do free PayPal integration payments!