iPay

PCI compliance is a challenging standard by which all organizations who accept, transmit, or store cardholder data must abide by. The best way to avoid dealing with the issues involved in certification is to not actually accept credit card data. In order to meet this requirement, CSI has developed an internet-based credit card authorization service that has no requirements for on-site credit card number handling or storage.

By utilizing the PayPal, Inc.® Payflow Link service, the credit card numbers, expiration dates, and CSC values are all collected by the credit authorization service on the Paypal website instead of the client website. The merchant (i.e. iMIS Public Events, Orders, Dues, or Donations) gets a yes or no answer on the authorization, along with ancillary data including the authorization code and transmission reference. The benefit to the iMIS customer is not implementing costly processes to manage and safeguard credit card numbers.

iPay starts by replacing the iMIS public views shopping cart with one developed specifically for this purpose. The iPay shopping cart integrates directly into the iMIS public views and uses the prevailing master pages and styling sheets. The credit card authorization is delivered back to a special web page in iMIS public, which in this case runs a process to register the purchase (if approved) with the iMIS back end via iBO. The user/member sees none of this, and instead is routed back to a receipt presentation page in iMIS public.