Easily Achieve PCI Compliance with Tokenization

12 | published by Danny H. on Friday, April 30, 2010

PCI compliance is a massive burden and worry for most merchants. Sort of like doing your taxes.

While the Payment Card Industry is getting more strict (and rightfully so) with security, many payment gateway companies have not found a great way to solve the problem. This has lead to many merchants simply ignoring the problem, incurring massive costs or shutting their doors because it's not sustainable.

It also puts eCommerce platform authors in a terrible position when one considers the cost of becoming PA-DSS certified, and maintaining this certification. But thankfully, so far we know of at least one payment gateway company to help solve the problem. That is Braintree.

Meet Braintree's Transparent Redirect

Our unique solutions prevent credit card data from entering a merchant environment without changing the user experience and offer merchants full control over the data. The scope of PCI Compliance is significantly reduced and no credit card data is present to be stolen. We don’t just solve PCI Compliance problems, we make them go away.

By using our Transparent Redirect (TR) and Vault, merchants can achieve PCI Compliance in days. TR and the Vault will eliminate the handling, processing or storing credit card data so you can qualify for the Self Assessment Questionnaire A, the shortest of the four SAQs.

– Taken from Braintree's website.

By using their Transparent Redirect service, you can possibly avoid or highly reduce many complexities and costs associated with PCI compliance.

How it Works

Put simply, card holder data never touches your environment. The customer's browser sends their information directly to Braintree where it is processed. This video will describe the solution in more detail:

LemonStand Supports Braintree's Transparent Redirect

We recently completed integration of Braintree's Transparent Redirect service. That means using LemonStand you can achieve PCI compliance quite easily. While there are more steps involved than simply using this service, it will help tremendously. And it may not cost you anything either.

While it does not completely avoid the requirement to be PCI compliant (like a hosted payment page would) it will greatly reduce scope while allowing you to control the user experience (unlike a hosted payment page).

Start Processing Credit Cards with Braintree

If you would like to process credit cards using Braintree and their amazing Transparent Redirect service, please contact them for pricing. If you plan on using LemonStand, please mention this in your initial message.

Share this blog post! →