PCI Compliance wants to know if we use Direct Post

-- url of the page with the problem -- : www.veggievore.com
-- HikaShop version -- : 2.6.0
-- Joomla version -- : 3.4.5
-- PHP version -- : 5.6.9

I am hoping you might be able to help in a bit of a gridlock. We are using Braintree Payments for the majority of our Credit Card Processing. The folks at Braintree have contacted us to go through a PCI Compliance survey with SurveyMetrics.com. We are most of the way through that process but they are now asking us if we use Transparent Redirect or Direct Post. Apparently there are other options as well. Braintree verified that we are NOT using Transparent Redirect.

We are using the braintree payment plugin from 3by400.com and I have asked them if we are using the Direct Post method. Their response was as follows:

"In 2013 Braintree switched from offering a Transparent Redirect method to what is known as the Braintree.js method. This is what our plugin uses.

The payment process is encrypted by Braintree.js and posted to the Braintree server. No payment data passes through, nor is stored on your website. "

Anyhow, I called Braintree and told them that they should be the ones to give me the answer to this question. They told me that I should push back on 3by400 to get them to tell me if their plugin uses the Direct Post. But, it appears that 3by400 is unable to answer this question.

Is this a question that you are able to answer?

Our site is at www.veggievore.com

Thank you, Sean Carney