{"id":224,"date":"2019-04-03T15:38:41","date_gmt":"2019-04-03T15:38:41","guid":{"rendered":"https:\/\/stoneedge.com\/kb\/?post_type=ht_kb&#038;p=224"},"modified":"2019-06-05T16:28:47","modified_gmt":"2019-06-05T16:28:47","slug":"securing-credit-card-information","status":"publish","type":"ht_kb","link":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/","title":{"rendered":"Securing Credit Card Information"},"content":{"rendered":"<h3>Setting Security and Payment-Related System Parameters<\/h3>\n<h4>SecureAccountNumbers<\/h4>\n<p>Default setting = FALSE<\/p>\n<p><u>Recommendation<\/u>: Set to TRUE<\/p>\n<ul>\n<li>If TRUE,\u00a0<span style=\"font-size: small;\">SEOM<\/span> will encrypt credit account numbers in 2 locations; order records and transaction records. Transaction records are created when a credit card is charged. Every credit card account number in the store data file will be encrypted, and once completed, the encryption cannot be reversed by the program. Changing the system parameter setting back to False will not decrypt the account numbers.<\/li>\n<li>This parameter does not block the credit card number from being viewed in the user interface, however, as the program is able to decrypt the data for display at the\u00a0<i>Process Orders <\/i>screen. This parameter does make it impossible for someone to get the credit card account number by looking directly in the database tables. If an unauthorized person gains access to the store data file, they will not be able to access the account information without having the\u00a0<span style=\"font-size: small;\">SEOM<\/span>\u00a0application as well.<\/li>\n<li>To prevent full credit card numbers from being displayed in the program, refer to system parameter &#8220;HideAccountNumbers&#8221; to True.<\/li>\n<\/ul>\n<h4>DeleteDownloadTextFiles<\/h4>\n<p>Default setting = FALSE<\/p>\n<p><u>Recommendation<\/u>: Set to TRUE<\/p>\n<p>If TRUE,\u00a0<span style=\"font-size: small;\">SEOM<\/span>deletes the text files that are created when orders are imported from a shopping cart system. Those text files may contain card account numbers, depending on the shopping cart in use.<\/p>\n<p>If FALSE, the program moves these text files to the\u00a0<strong>Data Archives<\/strong>\u00a0directory, and the account numbers in these files are not encrypted.<\/p>\n<p>This measure is highly recommended if the merchant wishes to be Visa-certified. See <a href=\"https:\/\/usa.visa.com\/support\/small-business\/security-compliance.html\">PCI compliance<\/a>\u00a0on Visa&#8217;s web site for more information.<\/p>\n<h4>AllowDeleteCreditCardInfo<\/h4>\n<p>Default setting = FALSE<\/p>\n<p><u>Recommendation<\/u>: Set to TRUE<\/p>\n<p>If TRUE, the program adds a selection on the\u00a0<i>Data Functions<\/i>\u00a0tab of the\u00a0<i>Settings<\/i> menu called <strong>Delete Old Credit Card Info<\/strong>. If clicked, the user is prompted to select a date (it cannot be less than 30 days from the current date). Credit card data is deleted in records where the order or transaction date is up to and including the date specified by the user.<\/p>\n<p>Note:\u00a0Once credit card data is deleted, the only way to restore it is with a backup copy of the data file.<\/p>\n<h4>CCLoadPartial<\/h4>\n<p>Default setting = FALSE; If set to TRUE, system parameter\u00a0SecureAccountNumbers\u00a0must be set to FALSE<\/p>\n<p><u>Recommendation<\/u>: Set to FALSE unless you capture credit card payments at the web site and you do not need to process credits or other transactions in\u00a0<span style=\"font-size: small;\">SEOM<\/span><\/p>\n<p>If TRUE, the program only stores the first four digits and the last four digits of card numbers even if the program receives the entire credit card number. Additional transactions cannot be run, and therefore the vendor may not be able to issue credits to customers\u2019 cards depending on the shopping cart. Also,\u00a0<span style=\"font-size: small;\">SEOM<\/span>\u00a0may not be able to determine the card type if the entire card number is not present. To get around this, run the credit card capture at the web site and manually log the payment as received in\u00a0<span style=\"font-size: small;\">SEOM<\/span>.<\/p>\n<h4>HideAccountNumbers<\/h4>\n<p>Default setting = FALSE<\/p>\n<p><u>Recommendation<\/u>: Set to TRUE<\/p>\n<p>If TRUE, full credit card account numbers are blocked from view in the user interface; only the last 4 digits of the account number are visible. Should be used in conjunction with system parameter,\u00a0SecureAccountNumbers.<\/p>\n<h3>Securing Credit Card Data before Sending Files to SEOM for Troubleshooting Purposes<\/h3>\n<h4>The Store Data File<\/h4>\n<ol>\n<li class=\"p\">Use\u00a0<span style=\"font-size: small;\">SEOM<\/span>\u2019s zip utility to secure the MS Access data file. This process does not work for SQL databases.<\/li>\n<li class=\"p\">Have all users exit\u00a0<span style=\"font-size: small;\">SEOM<\/span>\u00a0on all workstations.<\/li>\n<li class=\"p\">Close all other applications that might be using the store data file, such as UPS Worldship, etc.<\/li>\n<li class=\"p\">Go to the\u00a0<i>Main Menu<\/i>\u00a0and press\u00a0[Ctrl+Shift+Z].<\/li>\n<li class=\"p\">The utility copies the data in the store file into a new MS Access database in which all credit card numbers are changed to all zeros (&#8220;0000000000000000&#8221;). The file is also zipped by the utility.<\/li>\n<li class=\"p\">Send the zipped file to\u00a0<span style=\"font-size: small;\">SEOM<\/span>\u00a0via email, FTP, etc.<\/li>\n<\/ol>\n<h4>Order Import Text Files<\/h4>\n<p>If Stone Edge tech support requests a text file from the\u00a0<strong>Data Archives<\/strong>\u00a0folder:<\/p>\n<ol>\n<li class=\"p\">Open the file in\u00a0<i>Notepad<\/i>\u00a0or\u00a0<i>Wordpad.<\/i><\/li>\n<li class=\"p\">Manually remove all account numbers from the file.<\/li>\n<li class=\"p\">Transmit it to\u00a0<span style=\"font-size: small;\">SEOM<\/span>.<\/li>\n<\/ol>\n<h4>Order Import XML Files<\/h4>\n<p>If SETI tech support asks for a copy of an MLfile to analyze an order import problem:<\/p>\n<ol>\n<li class=\"p\">Open the file in\u00a0<i>Notepad<\/i>\u00a0or\u00a0<i>Wordpad<\/i>.<\/li>\n<li class=\"p\">Manually delete credit card numbers, denoted by the &#8220;&lt;number&gt;&#8221; tag, before transmitting to\u00a0<span style=\"font-size: small;\">SEOM<\/span>.<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Setting Security and Payment-Related System Parameters SecureAccountNumbers Default setting = FALSE Recommendation: Set to TRUE If TRUE,\u00a0SEOM will encrypt credit account numbers in 2 locations; order records and transaction records. Transaction records are created when a credit card is charged. Every credit card account number in the store data file&#8230;<\/p>\n","protected":false},"author":2,"comment_status":"closed","ping_status":"closed","template":"","format":"standard","meta":[],"ht-kb-category":[19],"ht-kb-tag":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.8.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Securing Credit Card Information - Stone Edge Order Manager<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Securing Credit Card Information - Stone Edge Order Manager\" \/>\n<meta property=\"og:description\" content=\"Setting Security and Payment-Related System Parameters SecureAccountNumbers Default setting = FALSE Recommendation: Set to TRUE If TRUE,\u00a0SEOM will encrypt credit account numbers in 2 locations; order records and transaction records. Transaction records are created when a credit card is charged. Every credit card account number in the store data file...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/\" \/>\n<meta property=\"og:site_name\" content=\"Stone Edge Order Manager\" \/>\n<meta property=\"article:modified_time\" content=\"2019-06-05T16:28:47+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/\",\"url\":\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/\",\"name\":\"Securing Credit Card Information - Stone Edge Order Manager\",\"isPartOf\":{\"@id\":\"https:\/\/stoneedge.com\/kb\/#website\"},\"datePublished\":\"2019-04-03T15:38:41+00:00\",\"dateModified\":\"2019-06-05T16:28:47+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/stoneedge.com\/kb\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Securing Credit Card Information\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/stoneedge.com\/kb\/#website\",\"url\":\"https:\/\/stoneedge.com\/kb\/\",\"name\":\"Stone Edge Order Manager\",\"description\":\"Documentation for the Stone Edge Order Manager\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/stoneedge.com\/kb\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Securing Credit Card Information - Stone Edge Order Manager","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/","og_locale":"en_US","og_type":"article","og_title":"Securing Credit Card Information - Stone Edge Order Manager","og_description":"Setting Security and Payment-Related System Parameters SecureAccountNumbers Default setting = FALSE Recommendation: Set to TRUE If TRUE,\u00a0SEOM will encrypt credit account numbers in 2 locations; order records and transaction records. Transaction records are created when a credit card is charged. Every credit card account number in the store data file...","og_url":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/","og_site_name":"Stone Edge Order Manager","article_modified_time":"2019-06-05T16:28:47+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/","url":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/","name":"Securing Credit Card Information - Stone Edge Order Manager","isPartOf":{"@id":"https:\/\/stoneedge.com\/kb\/#website"},"datePublished":"2019-04-03T15:38:41+00:00","dateModified":"2019-06-05T16:28:47+00:00","breadcrumb":{"@id":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/stoneedge.com\/kb\/articles\/securing-credit-card-information\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/stoneedge.com\/kb\/"},{"@type":"ListItem","position":2,"name":"Securing Credit Card Information"}]},{"@type":"WebSite","@id":"https:\/\/stoneedge.com\/kb\/#website","url":"https:\/\/stoneedge.com\/kb\/","name":"Stone Edge Order Manager","description":"Documentation for the Stone Edge Order Manager","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/stoneedge.com\/kb\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb\/224"}],"collection":[{"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb"}],"about":[{"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/types\/ht_kb"}],"author":[{"embeddable":true,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/comments?post=224"}],"version-history":[{"count":4,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb\/224\/revisions"}],"predecessor-version":[{"id":688,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb\/224\/revisions\/688"}],"wp:attachment":[{"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/media?parent=224"}],"wp:term":[{"taxonomy":"ht_kb_category","embeddable":true,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb-category?post=224"},{"taxonomy":"ht_kb_tag","embeddable":true,"href":"https:\/\/stoneedge.com\/kb\/wp-json\/wp\/v2\/ht-kb-tag?post=224"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}