When we started a little over a year ago, we decided that we'd encrypt all the credit/debit card information we receive from our customers on our servers. This does tend to lead to the occasional problem of our having to call a customer for their credit card info if they want to add another item to their existing order or decide to use expedited shipping after placing the order. The usual response is "Can't you just add it to my existing order?" We answer this question by explaining that the encryption is for the customer's protection. This is usually, although not always, treated as a satisfactory answer.
Based on a story today in Internet Retailer, it seems that the hassle is well worth the effort.
On average, only 66% of merchants and other organizations involved in processing payment card data encrypt that data for transmission over the Internet, compared to 100% among best-in-class organizations, research and advisory firm Aberdeen Group says in a new study, “Protecting Cardholder Data.”
We will certainly continue to encrypt credit/debit card info even if it means a few extra calls to customers.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment