Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

No credit card saved


HowellJ

Recommended Posts

I installed a new store (risquechiconline.com) for a client. I installed the WPP Add-on. After a few days of working this site, we're good to go.

 

BUT when a customer clicks on the PayPal Express image, they are looped back to the same page and not taken to PayPal. After putting in their credit card, the order processes and shows complete. I log in as administrator to view orders. The order has an Add Charge button. I click on it and a window pops-up with blank credit card info fields. Where's the credit card data provided by the customer? Is this normal? How much does it cost to have a specialist jump this?

Link to comment
Share on other sites

I installed the latest WPP from your site. When a customer clicks on the PayPal express checkout it basically refreshes the page. When a customer puts in their credit card information and confirms the order, they receive an confirmation invoice. The order shows up in the invoice section. It doesn't make much sense to go back and ask the customer for the information again. It appears we, the store, have lost their information. What's the point of installing SSL? Maybe I have it installed incorrectly but this doesn't make sense. Thanks for your input.

 

Response from Brian Burton at Dynamo Effects:

 

Yes, that is correct. The credit card information is not stored during the checkout process so the customer's credit card information must be entered manually if you want to use the "Add Charge" feature.

 

You must request the information from the customer. The idea behind that feature is if a customer calls to change their order, you can use the order editor contribution to modify the contents and quickly add a charge by requesting the customer's payment information over the phone. It will not allow you to add a charge without first contacting the customer and retrieving their payment information.

 

You don't need to ask the customer for their address information, just their credit card information. In order to store credit card information after the sale, you must be PCI compliant, which requires a serious investment and for that reason the credit card information is not stored. What's more is that you are not allowed to store the customer's CVV2 code at any point, so you would still need to contact them for that information.

 

So unless you are prepared to make a serious investment in your server infrastructure and security procedures, this is as good as it gets.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...