Full Credit Card Number in e-mail

[quantum]

Ask your Client is he is going to be responsible for the possible interception of this information?

already been through that with him. The answer is yes he has told me he will be.

[Kim]

How can you in good conscience even consider writing code that will violate the contract the merchant has with his credit card processing company?

Perhaps point your client here - http://usa.visa.com/merchants/risk_management/cisp.html

[quantum]

How can you in good conscience even consider writing code that will violate the contract the merchant has with his credit card processing company?

Good conscience? You are making assumptions that are very unfounded. I am extremely unhappy that my client wants to do this, and have spent a good deal of time (unpaid for) locating articles and information on the web to try and deter him from doing so as I am very against him doing so. Anyone that ever deals with customers knows how stubborn some clients can be, no matter what you say to them.

[Merlinpa1969]

agreed quantum however there are times where you need to tell the client that you will NOT do this,

<< has done it a few times,
client will either come to senses or they will find someone else thats willing to do the work.

[Merlinpa1969]

Im not Barco,
however I can pretty much assure you that IF he gets in trouble they will bring you in,
whether you tried to talk em out or not, if you provide the code that causes harm then yes you can be held accountable......

you are aware that there are rules and laws in place and to do this you would knowlingly be in violation

<< not barking just trying to keep people outta trouble

[barco57]

interesting wording of your last there merlin.... we all know your "not Barco"....your not good looking enough......

[quantum]

Im not Barco,
however I can pretty much assure you that IF he gets in trouble they will bring you in,
whether you tried to talk em out or not, if you provide the code that causes harm then yes you can be held accountable......

you are aware that there are rules and laws in place and to do this you would knowlingly be in violation

<< not barking just trying to keep people outta trouble

Sorry Merlina, getting confused with all the posts coming through. Unfortunately as far as things go, I am at the end of this project (he threw this in last minute as we were about to launch) and this is holding me up beign paid.

Anyway, if I will be held liable in anyway, that makes this simple and I won't code it so that it will do so.

[bobdog]

You have my sympathy...He won't pay you?

I've had similar situations in the past. In fact, I posted here in the forum on a former client that insisted this very issue. They wouldn't pay me

I ended up sending a certified letter to them absolving me of any responsibility, asked them to sign it, and return to me. Their response? Denial of liability, laugh at me and call me paranoid.

As said before, this is clearly a violation of TOS with the major credit card companies and PCI (payment card industry) you can google PCI terms of service and get the same strict compliance rules.

[Kim]

Andrew-

I used the words "in good conscience" because you are still considering it. Just because the client is paying, does not make them the law. Providing code that sends a virus wouldn't be something you would write is it? Changing the code to leave a huge potential security risk is just as bad.

[Kim]

Andrew - we must have been typing at the same time. Thank you.