Manual Credit Card Collection - Potential Problems
Older payment modules like
credit card and
CEON Manual Card are not recommended for the following reasons:
- they are not PCI Compliant
- storing credit card details in your database means both the store owner and the customer are at risk in the event of a breach.
- it may no longer be legal to do this (depending on your jurisdiction)
- it may be a violation of your merchant agreement (depending on the terms you agreed to).
So what should you do?
Switch to one of the built-in payment gateways. There are many payment processors Zen Cart supports.
Switch to one of the payment gateways from the Plugins Library.
The former will be better supported of course, but it’s your choice.
Many gateways can be configured to Auth Only instead of Auth and Capture if your concern is that the final order total might change.
The plugin Authorize.net CIM Card on file allows you to securely retain card information for future charges.
All these options give you a credit card entry form on your checkout payment page, which is what most customers will expect. (Naturally they all require an SSL certificate, but hopefully you already have one; if not, install SSL first.)