Running a shopping cart application
https://stackoverflow.com/questions/4420766
-
09-10-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
If I run a shopping cart application, does the web server need to be PCI compliant? The reason I ask because of the fact that I don't process the payments on the site anyway. The main payment method will be through Paypal.
I have not decided yet which shopping cart application that I will use: it could be one of the followings: opencart, magento, zen-cart
Thank you for your input.
Solution
No
Since paypal will be handling credit card data.
Q: To whom does PCI apply?
A: PCI applies to ALL organizations or merchants, regardless of size or number of transactions, that accepts, transmits or stores any cardholder data. Said another way, if any customer of that organization ever pays the merchant directly using a credit card or debit card, then the PCI DSS requirements apply.
