Our payment handling systems are compliant with Payment Card Industry (PCI) Data Security Standards as follows:
> We accept only card-not-present (e-commerce or mail/telephone-order) transactions;
> All processing of cardholder data is entirely outsourced to PCI DSS validated third-party service providers;
> We do not electronically store, process, or transmit any cardholder data on our systems or premises, but rely entirely upon a third party(s) to handle all these functions;
> We have confirmed that all third party(s) handling storage, processing, and/or transmission of cardholder data are PCI DSS compliant; and
> Any cardholder data we retain is on paper (for example, printed reports or receipts), and these documents are not received electronically