ShopSite Forums

[Richard]

The inability to download the CVV has become a real problem for many. This
is a real paranoid, inefficient attempt to protect customer information. The
fact that a merchant uses manual (offline) processing does not imply limited
order volume. Someone now has to view all the orders and write the CVV value
down prior to downloading, so this defeats the so called security measures.
The point - It should be the merchants responsibility to delete this
information after processing and to secure credit card information (as has
always been the case)

Agree?

Richard

[Webmaster - Dave's Discou]

AGREED! 100%, and ten times over.

The auto-delete of the CVV is a poor concept. At a bare minimum, a merchant
should be able to DISABLE this auto-delete.


"Richard" <rruda@shoplite.com> wrote in message
news:dkgdt7$2bc$1@eval.shopsite.com...

The inability to download the CVV has become a real problem for many. This
is a real paranoid, inefficient attempt to protect customer information.
The fact that a merchant uses manual (offline) processing does not imply
limited order volume. Someone now has to view all the orders and write the
CVV value down prior to downloading, so this defeats the so called
security measures.
The point - It should be the merchants responsibility to delete this
information after processing and to secure credit card information (as has
always been the case)

Agree?

Richard

[David H.]

The requirement to remove the CVV information after it has been viewed or
downloaded comes from VISA and other CC vendors.

-David

"Webmaster - Dave's Discount Motors" <webmaster@davesmotors.com> wrote in
message news:dkgen4$2ug$1@eval.shopsite.com...

AGREED! 100%, and ten times over.

The auto-delete of the CVV is a poor concept. At a bare minimum, a
merchant should be able to DISABLE this auto-delete.


"Richard" <rruda@shoplite.com> wrote in message
news:dkgdt7$2bc$1@eval.shopsite.com...
The inability to download the CVV has become a real problem for many.
This is a real paranoid, inefficient attempt to protect customer
information. The fact that a merchant uses manual (offline) processing
does not imply limited order volume. Someone now has to view all the
orders and write the CVV value down prior to downloading, so this defeats
the so called security measures.
The point - It should be the merchants responsibility to delete this
information after processing and to secure credit card information (as
has always been the case)

Agree?

Richard

[Richard]

With shopsite, if you do not real-time process (you offline process) you
cannot download the CVV data, period. It can only be viewed. So your "viewed
or downloaded" is not possible under these circumstances.. You can only
view.

"David H." <DavidAlanHills@hotmail.com> wrote in message
news:dldvcr$evm$1@eval.shopsite.com...

The requirement to remove the CVV information after it has been viewed or
downloaded comes from VISA and other CC vendors.

-David

[jim]

Not so, here is the download of an order showing the CVV number (111)
after the date field.
.... Visa 4111 1111 1111 1111 Jim Bob 01/2007 111 ...

Note that once you view the orders the information is gone but if you
only download the orders and are using the manual/offline method the CVV
value will be in the download file.

Jim

Richard wrote:

With shopsite, if you do not real-time process (you offline process) you
cannot download the CVV data, period. It can only be viewed. So your "viewed
or downloaded" is not possible under these circumstances.. You can only
view.

"David H." <DavidAlanHills@hotmail.com> wrote in message
news:dldvcr$evm$1@eval.shopsite.com...
The requirement to remove the CVV information after it has been viewed or
downloaded comes from VISA and other CC vendors.

-David

[loren_d_c]

Just because the app you are importing your orders into does not
use/show you the CVV2 value does not mean that it did not get that
information in the first place.

-Loren


Richard wrote:

With shopsite, if you do not real-time process (you offline process) you
cannot download the CVV data, period. It can only be viewed. So your "viewed
or downloaded" is not possible under these circumstances.. You can only
view.

"David H." <DavidAlanHills@hotmail.com> wrote in message
news:dldvcr$evm$1@eval.shopsite.com...

The requirement to remove the CVV information after it has been viewed or
downloaded comes from VISA and other CC vendors.

-David

[Richard]

Jim/Loren,
Will look at it when I put through some dummy data and will revert. Our
software has always imported CVV data just fine prior to this
implementation.
Tks
RR