December 5, 2012
One of my goals in project ‘simplify’, was to not only make the KillerVideoStore simpler to use … but also smarter.
What is a smart e-commerce website?
For me, it is a combination of things that the store does:
- Let’s people interact with the store in a way that enhances the store for everyone.
- Makes it easy for people to find what they are looking for.
Creating a store ‘smart’, is much more about making it simple and useable … rather than trying to add all kinds of fancy whiz-bang technology to it. But technology is part of the equation as well.
November 1, 2010
The following article and podcast is based on my personal experience and opinion, as web application developer and web entrepreneur.
Let’s start with the basics, what is PCI compliance?
The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment. Essentially any merchant that has a Merchant ID (MID).
… So if you are processing credit cards and you take credit card information on your site, you are then subject to the edicts of PCI compliance.
Now on the surface this may sound like a good idea, but in practice, I am seeing something akin to the Y2K scam of the year 2000, where many companies paid big money ($$) to protect against the non-existent threat of Y2K. Again, my opinion as a programmatic nerd.
… Ahh Y2K, many of fraudulent fortunes were made in those days!
PCI Security Server Scan/Scam
So being a proud holder of a merchant ID (so I can process credit cards directly) I fell under the oppressive thumb of the PCI compliance industry. Besides answering yes to a whole slew of questions that had ZERO relevance to my company because of how we do things, I had to subject my server to the PCI compliance scan.