views:

150

answers:

3

I'm designing a site using ASP.NET and I would like the content to be subscription based. For the most part, everything will be charged to a credit card every month. I know I can store the CC in the database but is there another more secure solution to this?

This isn't a giant project so I need some solution that's simple, quick, secure, and reliable that one developer can do.

+3  A: 

Most likely it depends on your payment gateway and/or merchant account setup. Some payment gateways like Authorize.net will handle the recurring billing for you.

Mcbeev
Thanks' I'll take a look at this.
danmine
A: 

Is it an option to NOT store the credit card data?

See this if you need some encouragement: PCI DSS Compliance

Scott Ferguson
I really don't want to store the data. PCI looks a bit - complex.
danmine
Good idea... trying to come up with a secure solution for storing credit cards can be a full time job. Unless it's your core business, I'd outsource it. :)
Scott Ferguson
+2  A: 

Use a payment processor that will handle credit card recurring charges. Most big processors will do this for you, and store the credit card information.

Adam Davis
+1 because it's sensible. There are too many rules and regulations for data storage when talking about CC numbers. Let someone else handle it for you because you'll need a full time person to manage the security aspects alone otherwise.
Adam Hawes