Reply
Highlighted
Member
Posts: 2
Registered: ‎11-12-2014
Accepted Solution

Apple pay token PCI compliance

Hi,

 

Our current checkout proccess is with credit cards is that open requesting a service we create customer profile add payment type, and once service is delivered we create a transaction.

 

Can we store token for transaction.paymentType.opaqueData.dataValue from Apple pay in our servers before creating transaction? Will it be PCI complient, since it is encripted token which is tied to our?

 

It would be even better if we could create PriorAuthCapture transaction with all required payment information, and then convert it to AuthOnly which will be updated to CaptureOnly, Basicaly transaction will go through bunch of stages up until it is settled.

 


Accepted Solutions
Highlighted
Solution
Accepted by topic author driutheman
‎08-21-2015 01:58 AM
Administrator Administrator
Administrator
Posts: 563
Registered: ‎08-03-2011

Re: Apple pay token PCI compliance

 

Hi driutheman,

 

Because this opaque data is relatively new in the payment space, it is still somewhat open to the interpretation of PCI compliance validators to determine how this affects your standing.

You can authorize a transaction and submit a prior auth capture request if you wish to complete and settle that charge. I suggest checking this article for a detailed definition of each transaction types you mentioned.

 

Thanks,

Joy

View solution in original post


All Replies
Highlighted
Solution
Accepted by topic author driutheman
‎08-21-2015 01:58 AM
Administrator Administrator
Administrator
Posts: 563
Registered: ‎08-03-2011

Re: Apple pay token PCI compliance

 

Hi driutheman,

 

Because this opaque data is relatively new in the payment space, it is still somewhat open to the interpretation of PCI compliance validators to determine how this affects your standing.

You can authorize a transaction and submit a prior auth capture request if you wish to complete and settle that charge. I suggest checking this article for a detailed definition of each transaction types you mentioned.

 

Thanks,

Joy

Highlighted
Member
Posts: 2
Registered: ‎11-12-2014

Re: Apple pay token PCI compliance

Hi Joy,

 

Thanks for clarification. We canot do an authorize transaction request since we do not know if we gona be able to provide a service to customer.

 

We will tempory cache this data on our servers.