Had a quick search of the forums and was surprised I couldn't find too much detail relating to this.
We've been battling the issue of PCI compliance on and off for about 2 years (as covered here). Ultimately we're still not compliant.
I'm not sure how strongly enforced PCI compliance is in other territories but we're UK based and have been receiving monthly fines for non compliance for well over a year.
Our bank is now doubling the monthly non-compliance fine.
To try and resolve the problem we've migrated to a private server in recent weeks which has certainly helped but SecurityMetrics are still finding vulnerabilities within PHP scripts on the server, i.e. client side issues with Zen Cart.
I'm aware that the next big release of Zen Cart is supposed to address PCI compliance, but does anyone have any experience of making their current Zen Cart store compliant or perhaps can recommend someone we can ask for help?
We've reached the point where we're seriously considering switching to an entirely new ecommerce platform to achieve compliance.
Bookmarks