02-03-2012, 10:42 PM
I will only argue to say that they do store personal information, and for that they have a legal obligation to protect it. Luckily they don't store SSN and CC#'s because yes they do link to someone else for CC# or Paypal.
But it depends on their supplier link for PCI DSS compliance. If you chose paypal, sure they are level 1 compliance, but what if it's some cut rate company doing less than 1M transactions a year, then they only need to put ACL's to isolate the "pay" network from the rest of the systems. That's it for level 4, and level 3 not much tougher, both of which I have personally never once seen an audit for.
So I am going to stand my ground and say, they won't get any money from me until its SSL from login to logout, and as was mentioned its not that difficult, I was doing that stuff over 10 years ago when it wasn't so easy like today.
But it depends on their supplier link for PCI DSS compliance. If you chose paypal, sure they are level 1 compliance, but what if it's some cut rate company doing less than 1M transactions a year, then they only need to put ACL's to isolate the "pay" network from the rest of the systems. That's it for level 4, and level 3 not much tougher, both of which I have personally never once seen an audit for.
So I am going to stand my ground and say, they won't get any money from me until its SSL from login to logout, and as was mentioned its not that difficult, I was doing that stuff over 10 years ago when it wasn't so easy like today.
DSST- General Anthropology - 52, Intro to Computer - 469, Technical Writing - 54, DSST Ethics in America - 59 (1996),
CLEP- Sociology -54, College Math - 550(1996), CLEP Principles of Management - 60 (1996)
Aleks Beg Alg,
CLEP- Sociology -54, College Math - 550(1996), CLEP Principles of Management - 60 (1996)
Aleks Beg Alg,
![[-]](https://www.degreeforum.net/mybb/images/collapse.png)