-- HikaShop version -- : 2.6.2
-- Joomla version -- : 3.5.1
A client received this from Authorize.net. Does HikaShop store partially masked CC numbers in the database? See below.
________________________________
Dear Authorize.Net Merchant:
On the evening of March 21, 2016, between 4:13 PM and 11:49 PM Pacific time, an error occurred following an Authorize.Net system update that resulted in some merchants receiving transaction responses that contained their customers' full, unmasked card number associated with the transaction, rather than the masked, last four digits (Ex. XXXX1234) normally included in the response. Our internal team identified and resolved the issue.
Based on our follow-on investigation, it appears some of your transactions may have been affected. As with all your transaction processing, these responses were returned via a secure, encrypted connection. However, we urge you to ensure you are not storing this unmasked data in your systems.
It is recommended that you promptly contact your e-commerce/shopping cart provider or web developer to determine whether you typically store the card number field from the transaction response data you receive from Authorize.Net. Please refer to the FAQs below for further details regarding the card number field and its location in the transaction response.
If you determine that any transaction responses from the timeframe above were stored in your systems and contain a full, unmasked card number (rather than just the last four digits), it's recommended you delete the full card number or take appropriate steps to securely store or mask the data to maintain your level of Payment Card Industry Data Security Standard (PCI DSS) compliance. Please contact your Merchant Service Provider or PCI DSS assessor for further information on PCI compliance or refer to the PCI DSS website.
If you have any questions regarding this notice, please review the FAQs below or contact Customer Support.
We apologize for any disruption this may have caused and thank you for being an Authorize.Net merchant.
Sincerely,
Authorize.Net
HIKASHOP ESSENTIAL 60€The basic version. With the main features for a little shop.
HIKAMARKETAdd-on Create a multivendor platform. Enable many vendors on your website.
HIKASERIALAdd-on Sale e-tickets, vouchers, gift certificates, serial numbers and more!
MARKETPLACEPlugins, modules and other kinds of integrations for HikaShop
