diff options
| -rw-r--r-- | README | 6 |
1 files changed, 5 insertions, 1 deletions
@@ -103,7 +103,11 @@ Stripe's payment page. Therefore, under PCI DSS 3.0, **Epirts.js may not be used to process live payment cards without first completing PCI SAQ A-EP and having an ASV perform -quarterly vulnerability scans**. +quarterly vulnerability scans**. Currently, the only way to control your +store's checkout process and ensure that no non-free JavaScript programs are +distributed to your customers is to use a program like Epirts.js (or process +cardholder data directly on your server) and pay for a scanning service. Such +is the state of payment processing. Copyright Information ===================== |