Hosted Order Automation
PCI DSS compliance requires significant effort for merchants storing credit card information for their customers. CashBox has been helping merchants ease their PCI DSS compliance burden since 2006. However, while our direct API implementation reduces PCI DSS compliance efforts for our merchants, it does not eliminate them. Hosted Order Automation, available as a feature in CashBox, takes the power of CashBox one step further for companies looking to avoid the PCI DSS compliance burden altogether.
How it works
Companies accepting credit card transactions online collect sensitive payment information before storing it in their billing system. Even if unencrypted payment data is not stored permanently, it passes through server RAM where it can potentially be swapped to the hard drive. This temporary storage imposes PCI DSS compliance efforts, even when using a full billing solution with secure encryption and tokenization.
HOA eliminates the need for merchants to store sensitive payment data, or even collect it on corporate servers. This is accomplished by providing a secure, verified session for customers to enter their payment information. The form is then securely transmitted to CashBox without passing through internal servers.
Benefits of HOA
In addition to eliminating the compliance burden, HOA has the advantage of providing merchants with complete control over the look and feel of their website or application. This approach is fundamentally different than Hosted Order Pages (HOP) that intrude on the customer experience and require the vendor to update their UI to match each website modification. Companies who avoided taking credit cards online due to the cost of meeting PCI regulations now have an alternative path to launching new digital business models.
