PCI Compliance - SmithCart - Smith Consulting

Item		Qty	Total
	{{cartItem.ProductName}} SKU: {{cartItem.ProductSku}}	{{cartItem.Quantity \| number : 2}} x {{cartItem.UnitCost \| currency : '$' : 2}}	{{cartItem.UnitCost * cartItem.Quantity \| currency : '$' : 2}}
{{itemVariant.VariantHasText ? (itemVariant.VariantName + ': ' + itemVariant.VariantText) : (itemVariant.VariantGroup + ': ' + itemVariant.VariantName)}}
You have no items in your shopping cart.
Subtotal	{{minicart.cartTotals.SubTotal \| currency : '$' : 2}}

Item

Qty

Total

{{cartItem.ProductName}}
SKU: {{cartItem.ProductSku}}

{{cartItem.Quantity | number : 2}} x {{cartItem.UnitCost | currency : '$' : 2}}

{{itemVariant.VariantHasText ? (itemVariant.VariantName + ': ' + itemVariant.VariantText) : (itemVariant.VariantGroup + ': ' + itemVariant.VariantName)}}

You have no items in your shopping cart.

Subtotal

{{minicart.cartTotals.SubTotal | currency : '$' : 2}}

Image	Item	Qty	Total
	{{cartItem.ProductName}} SKU: {{cartItem.ProductSku}}	{{cartItem.Quantity \| number : 2}} x {{cartItem.UnitCost \| currency : '$' : 2}}	{{cartItem.UnitCost * cartItem.Quantity \| currency : '$' : 2}}
{{itemVariant.VariantHasText ? (itemVariant.VariantName + ': ' + itemVariant.VariantText) : (itemVariant.VariantGroup + ': ' + itemVariant.VariantName)}}
You have no items in your shopping cart.

Image

Item

Qty

Total

{{cartItem.ProductName}}
SKU: {{cartItem.ProductSku}}

{{cartItem.Quantity | number : 2}} x {{cartItem.UnitCost | currency : '$' : 2}}

{{itemVariant.VariantHasText ? (itemVariant.VariantName + ': ' + itemVariant.VariantText) : (itemVariant.VariantGroup + ': ' + itemVariant.VariantName)}}

You have no items in your shopping cart.

SKU

Product Name

Unit Cost

Qty

Line Total

{{itemVariant.VariantHasText ? (itemVariant.VariantName + ': ' + itemVariant.VariantText) : (itemVariant.VariantGroup + ': ' + itemVariant.VariantName)}}

You have no items in your saved shopping cart.

Status	Order No.	Order Date	Ship To	Order Total	Pay Total	Balance
Bill Me Later Open Ready To Ship Shipped Picked Up Cancelled Incomplete On Hold Back Ordered Returned {{order.Status}}	{{order.OrderID}}	{{order.OrderDate \| date : 'M/d/yyyy'}}	{{order.ShipFirstName}} {{order.ShipLastName}}, {{order.ShipAddress1}} {{order.ShipAddress2}}, {{order.ShipCity}}, {{order.ShipState}} {{order.ShipZipcode}}	{{order.GrandTotal \| currency : '$' : 2}}	{{order.PayTotal \| currency : '$' : 2}}	{{order.GrandTotal - order.PayTotal \| currency : '$' : 2}}

Status

Order No.

Order Date

Ship To

Order Total

Pay Total

Balance

Bill Me Later Open Ready To Ship Shipped Picked Up Cancelled Incomplete On Hold Back Ordered Returned {{order.Status}}

{{order.ShipFirstName}} {{order.ShipLastName}}, {{order.ShipAddress1}} {{order.ShipAddress2}}, {{order.ShipCity}}, {{order.ShipState}} {{order.ShipZipcode}}

12/7/2012 5:17 PM

Christian

Joined: 2/3/2012

Posts: 19

PCI Compliance

We are about to turn on Smith Cart for our ecommerce solution. Our merchant processor requires us to be PCI Compliant. In the questionnaire, we are recuired to complete:

- Payment Application (Smith Cart
- Version (5.26)
- Application Validation Date (???)

We have the opportunity to go to the Visa Compliant Apps website to recall our specific infor, but Smith Consulting does not show up in either the VISA PABP Validated Apps or the PCI Validated Payment Applications.

Could you please give some advice on how to provide the proper information so we are compliant?

Thanks,

Christian

12/7/2012 6:11 PM

Scott Kelly

Joined: 3/11/2010

Posts: 1979

Re: PCI Compliance Modified By Scott Kelly on 12/7/2012 11:49:20 PM

Hi Christian,
About 90% of the PCI compliance audit involves your hosting environment, physical security, firewall, windows server, iis, sql server, DotNetNuke, windows security/permissions, etc, etc. The other 10% involves the shopping cart.. If your credit card processing company requires PCI certification on your site before they issue your merchant account, you will need to hire a company that does PCI audits and they will run an audit of your hosting environment, DNN portal and cart and will issue your business a PCI certificate which you can then give to the company you are working with on your merchant account. Most merchant account providers dont require a seperate PCI audit is usually is only required for high risk businesses or non US sites.

Alternatively, if your business is categorized as a high risk business, the following options would eliminate the requirement for a PCI audit to process credit cards on your site:

1. Configure your cart to not save credit cards (in payment setup screen)

2. Use one of the many hosted payment gateways integrated in Smith Cart where your site will not handle credit cards.

Please see the following link for more info on Smith Cart PCI compliance:
http://www.smith-consulting.com/Products/PCICompliance.aspx

Scott Kelly
Project Manager
DotNetNuke Consulting, DotNetNuke Store and DNN Ecommerce

Page 1 of 1

You have no items in your shopping cart.

You have 1 item in your shopping cart.

{{multiCartItemsStr.replace('[COUNT]', minicart.cartList.length)}}

Item(s): {{minicart.countCart().Number | number : 2}}

Questions? Contact us for answers!

Services

DNN Modules

Support

Contact Us