My current project requires the monthly billing of client credit / debit cards.
I plan to use Protx / Streamline for the payment gateway.
However, what do you recommend for storing the customers credit card details?
The reason i want to store them, is so that i can process recurring billing on a monthly basis.
I use PHP / mySQL.
Im assuming a need some sort of encryption algorithm to safely store the credit cards in encrypted format, but then i would need to unencrypt upon processing of them. Any suggestions for php encryption classes?
I plan to install SSH on to the domain in question and transmit the data to the payment gateway using SSL.
And all passwords for the hosting account and admin will be highly secure (e.g: 8*k1lp!).
But, are there any other security procedures i need to put into place to safely (and legally) store their credit card data. Last thing i need is a law suit on my hands.
Just thought i'd try you guys first in case some of you have great experience in this area.