UH-Simon Posted December 31, 2007 Share Posted December 31, 2007 We use Secpay as our payment gateway and need to be able to bill clients automatically each month. Does WHMCS store the card details on our side (meaning we have certain compliance issues) or is it using another method? 0 Quote Link to comment Share on other sites More sharing options...
0 PPH Posted December 31, 2007 Share Posted December 31, 2007 We don't use Sec-pay but WHMCS does store CC info. It does not store the security # if you need it to do recurring payments. It is not legal to store the security # at this time. 0 Quote Link to comment Share on other sites More sharing options...
0 UH-Simon Posted December 31, 2007 Author Share Posted December 31, 2007 Hmm, thats a bit of a showstopper then. At the moment a customer submits the order, pays using the Secpay secure pages and then each month we repeat the payment using the payment reference the Secpay system generated. This means the customer doesnt need to do anything each month. From what I can see in WHMCS this will no longer be possible? 0 Quote Link to comment Share on other sites More sharing options...
0 UH-Simon Posted December 31, 2007 Author Share Posted December 31, 2007 Actually, thinking about this. I presume that we dont need the CV2 number for the repeats as secpay wont be storing them and we can currently repeat the payments each month using our current system. Maybe we have CA with our merchant (HSBC) and therefore CV2 is only required for the initial payment. Still interested to know how WHMCS uses Secpay system for recurring payments. 0 Quote Link to comment Share on other sites More sharing options...
0 mediademon Posted September 12, 2008 Share Posted September 12, 2008 Hi There I'm quite interested in more info too, any SecPay (now PayPoint) users out there 0 Quote Link to comment Share on other sites More sharing options...
0 othellotech Posted September 12, 2008 Share Posted September 12, 2008 It is not legal to store the security # at this time. Wrong. *Merchants* are not allowed to retain the CVV2 code *after* processing a payment. *Gateways* after meeting the PCI-2 do retain it for the purposes of repeat billing etc. - protx, worldpay, cardstream, secpay, securetrading etc all do. Most gateways have a way of reusing the original transaction id, a returned futirepay id, a specific recurring payment id etc to do repeats. AFAICT WHMCS supports the SecPay repeat featureset - best to raise a tcket with sales to ask/get it developed if a showstopper. 0 Quote Link to comment Share on other sites More sharing options...
0 php4hosting Posted September 17, 2008 Share Posted September 17, 2008 We use Secpay, all we do is submit the same card info each month. We dont store the CV2 code and it works with WHMCS without any problems The only thing you may need is to contact SP to have them lower the fraud security on the account as all the payments come from the same IP address etc... Easy done if you talk to the right people Darren 0 Quote Link to comment Share on other sites More sharing options...
0 Summy Posted September 18, 2008 Share Posted September 18, 2008 CV2/AVS isn't available, therefore not required on Continuous Authority payments. This is the case with ProTX, so I presume it will be the same with SecPay. 0 Quote Link to comment Share on other sites More sharing options...
Question
UH-Simon
We use Secpay as our payment gateway and need to be able to bill clients automatically each month. Does WHMCS store the card details on our side (meaning we have certain compliance issues) or is it using another method?
Link to comment
Share on other sites
7 answers to this question
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.