Thank you for the information. It would be best to call support about that then.
I have a couple unrelated questions that I think I understand, but perhaps you could clarify. I am the developer for the account, not the account owner.
1. I am using the SIM method. I chose that because I would rather have all of the credit card transactions performed on your server rather than collecting all of that information on our server and using AIM, although I might want to do that in the future. I am using a relay response and processing the POST data that you send back to us. I am storing the username, e-mail, phone, some information about the order and the transaction ID and authorization code, no other information. More detialed information is available on the Merchant's ANET account. I am still a little confused about how that is implemented on your end. It seems that you send the post in the background somehow (similar to an AJAX call or a header redirect) such that the output that I generate (a custom receipt) is captured and display on your server page (the url is on your server). It all works fine, but the user has to click a link that I provide to return to our website. I would prefer to have the relay actually direct the users browser back to our website to display the receipt. That doesn't seem possible with the SIM method. Is that a business or regulatory requirement for the SIM method.
2. The Merchant got an e-mail about PCI compliance. Is that something that I have to assist with completing? She said that they ask for an IP address. Is that the IP for the hosted account for our website, or an IP address for her business location. For the PCI compliance, whhat do I have to know as a developer (i.e. what information can we store in our database about transactions, what sorts of notices do we have to include in the receipt, on the hosted CC form, etc.
Thank you.
