I am in need to following system: On one site, the users will purchase a product. At the time of purchasing it, they will just enter the CC details, and I will store it to my database. (in encrypted form). Then, after some days, I need to perform the transaction. I want to use Paypal for the same. Is there any class or tutorial for the same?
for security and processing reasons the safest from customer point of view is to go directly with paypal CC payments. have your customers pay to paypal and then redirect to your site. that would save you lots of security headache and liability problems in case of abuse of CC data - it also secures that all customers have international rules for refund etc applied to all transactions. I would never trust a site based in IN but I definitely trust paypal no matter where the pp dealer is.
There's all sorts of legislation to abide by when storing credit cards, never mind the actual security implications. It's also against the terms of Visa/MC to store CV2 numbers which are needed to charge most credit cards. You're probably best looking at someone like MetaCharge who offer the storage or pre-auth of cc on your behalf. They can the supply you with a repeat billing key or similar to make later payment requests on that card if authorised by the user. Saves all the hassle of security and legislation for storing the details.
Hello All, Thanks for your replies. I am exactly in need to of what mfscripts said. Actually, this is a group buying site. There is a "deal", which requires a minimum number of people to purchase that item. At the time of sign up, I need to make an assurance of payment, but I don't want to charge at this time. if the deal is successful, I wish to charge them. I will look at metacharge, if it helps me. If there are any other suggestions, please let me know. Thanks,
credit cards being used online isnt good anymore if you have a store website you may as well use paypal
I can not use paypal directly. As I explained, users are not making payment on the spot. I need to charge them after a specific period, depending on certain conditions. I am making the system something like: groupon.com Thanks
Unless you are PCI compliant you would be breaking the law when storing the CC info and any processor accepting your data this way could land themself in hot legal waters.. It is probably possible to do what you want to do but i strongly recommend that you find a processor that can work within your needs and help store the CC info to avoid legal troubles.
I think the 3DSecure plataform allows you to have recurring payments. The credit card info is sent to a server directly trough SOAP and you receive an imediate answer saying if it was accepted or not. You will not store credit card info.