PCI requirements are for any entity that processes credit cards. from their site:
"The PCI DSS is the
global data security standard that any business of any size must adhere to in order to accept payment cards...."
the EU has, for years, been far ahead of the US when it comes to credit card security. the idea implied in the above statement, that you could be violating PCI if in the US, but not elsewhere, is simply false...
this payment module allows for the secure storage of credit cards on the authorize.net gateway:
https://www.zen-cart.com/downloads.php?do=file&id=2272
adding a subscription element to this module, is no doubt possible, but not included in the base implementation.
best.
Bookmarks