PCI was developed by the major credit card companies as a guideline to help organizations that process card payments prevent credit card fraud, hacking and various other security vulnerabilities and threats. A company processing, storing, or transmitting payment card data must be PCI DSS compliant or risk losing their ability to process credit card payments and being audited and/or fined
If you are interested in using the Response PCI compliant options, for example, encryption, SSL and secure SMTP, refer to the Response Installation and Configuration Guide for more information.
Response protects cardholder data across open, public networks as well as protects stored data by:
Using the Secure Sockets Layer (SSL) protocol to establish a secure communication channel to prevent the interception of critical or sensitive information across the network and other Internet communications.
Implementing and connecting secure SMTP over a secure socket.
SMTP authentication is available for all outgoing SMTP servers, and can be turned on for the Mail Sender, POP, JMS and Alias mailboxes. Review the Edit POP Mailbox dialog and Mail Sender Window topics to learn how to set up this option for the SMTP servers.
Providing a secure communication between the Response Server and the database server.
Storing data as encrypted in the database.
Follow the steps on the Adding Custom Fields topic to use this option.