PCI compliance is a challenging standard by which all organizations who
transmit, or store cardholder data must abide by. The best way to avoid
dealing with the
issues involved in certification is to not actually accept credit card
data. In order to meet
this requirement, CSI has developed an internet-based credit card
that has no requirements for on-site credit card number handling or
By utilizing the PayPal, Inc.® Payflow Link service, the credit
card numbers, expiration
dates, and CSC values are all collected by the credit authorization
service on the Paypal
website instead of the client website. The merchant (i.e. iMIS Public Events, Orders,
Dues, or Donations) gets a yes or no answer on the authorization, along
data including the authorization code and transmission reference. The
benefit to the
iMIS customer is not implementing costly
processes to manage and safeguard credit card
iPay starts by replacing the iMIS public
views shopping cart with one developed
specifically for this purpose. The iPay shopping cart integrates
directly into the iMIS
public views and uses the prevailing master pages and styling sheets.
The credit card
authorization is delivered back to a special web page in iMIS public, which in this case
runs a process to register the purchase (if approved) with the iMIS back end via iBO.
The user/member sees none of this, and instead is routed back to a
page in iMIS public.
Computer System Innovations, Inc.