Virtual Terminal from PayPal

[fx2ltd]

Hi there! I am using the Virtual Terminal from Paypal.

It's a facility to process payments with credit cards instead of renting the machine. It works more or less like Protex and EPDQ or similar and allows telephone or mail orders.

I'd like to know if it's possible to consider to program a module for this (which is using paypal) or simply add some more fields in the Order request where the customer can insert his credit card details that get stored on the server but not transmitted via e-mail.

In this case, the administrator can log in the system and retrieve the full credit card details (along with the Security 3 digits code of the back, the full number, the start date and the expiration date etc.) and process the order manually.

To the customer just the last 4 digits of the Credit card number are sent via e-mail.

Thank you!

[netshine]

I'm afraid there are PCI implications of doing things that way. You would need an encrypted database, and would probably also have to have regular audits. As such, so far, all nBill gateways avoid storing card information in your database. I understand OSDCS have written a Paypal Pro gateway, which takes card payments directly and processes them server-to-server with Paypal (so there is no need to store the details, but also no need for the user to leave your site). I have no plans to write a manual gateway that stores card details in the database though (although there is nothing stopping anyone else from writing one - just make sure you are PCI compliant, otherwise your merchant account could be suspended).