Online merchants can store their customers’ sensitive payment information on Authorize.Net’s server under a new security solution launched by the CyberSource Corp. subsidiary.
Authorize.Net’s Customer Information Manager enables merchants to simplify compliance with the Payment Card Industry Data Security Standard because they don’t have to store data on their own servers, says Roy Banks, Authorize.Net president.
“Online retailers selling goods and services and taking credit card payments from their customers have a duty and an obligation to safeguard the cardholder data they’re capturing from their customers,” Banks says. “We will do that on their behalf. We’ve invested quite a bit of money over time to make sure that we are secure and can maintain sensitive cardholder information in an environment that will prevent the loss or theft of that credit card data.”
The Payment Card Industry Data Security Standard is a set of 12 measures that retailers are expected to take in order to protect customers’ credit card account data.
Using the CIM service merchants can also simplify payments from returning customers as well as manage recurring transactions, Banks says. With CIM, merchants can create, view, update and delete customer profiles that include billing, payment and shipping information. The solution also supports multiple profiles, enabling customers to store multiple shipping addresses or payment methods.
Although Authorize.net has many consumer products retailers among its client base, none were available to comment on the new CIM service. But an online real estate industry service offers an example of how CIM operates.
Realty4Cell.com, a service which gives realtors the ability to transmit information and photos of real estate listings via cell phone, was one of the first Authorize.Net merchants to implement CIM in its trial phase. “Real estate agents using Realty4Cell.com pay a minimum monthly fee and depending on usage, also pay a per transaction fee," says Matthew Gaiser, president of Realty4Cell.com. "Prior to implementing CIM, we had to obtain credit card data every time our customers had a usage charge. With CIM, however, all of that is automated through our connection with Authorize.Net, making billing a snap. The ability to have multiple and back-up funding sources in the event that a credit card is declined or expires is also a tremendous bonus.”