Takeaway kept my card details?

[marcus_667]

thats odd just purchased a game on steam didnt ask for my cvv again

 

[Efour]

Would my on-line bank statement give me any clue as to what merchant they use? a code or ref number ?
ill call TS tomorrow morning, found a local number, they will probably have a procedure.

I have no problems with them knowing the card number, but the CVV was just a **** take.
Hence why i ran to the internet to share a cool story.

 

[Energize]

As already mentioned, play and amazon, also thehut never seem to need any additional card info, I can just put a transaction through.

* Your card’s CV2 number is the rightmost three digits printed on the signature strip. We do not store your CV2 number, but use it to perform a security check when you change your credit/debit card details in any way.

 

[Aeleys]

thats odd just purchased a game on steam didnt ask for my cvv again

normally, unless you change your card they wont ask for it a second time. since they allready verified its YOUR card that is linked to the steam account.(or any other regulated online shopping store for that matter)

if you want to be really sure, make a new steam account and use the same card. if it asks for it. you know they dont keep the details...

 

[Wicksta]

As already mentioned, play and amazon, also thehut never seem to need any additional card info, I can just put a transaction through.

Ah yeah, now you mention it I ordered F1 2010 from Amazon this week and it didn't ask me.

 

[Maccapacca]

This is why I periodically 'loose' my card and get sent a new one next day by Halifax, I do it also when I hire a car or any other deposit argument waiting to happen.

 

[memyselfandi]

I'd probably try asking VISA directly for advice

E-mail: [email protected]
Tel: +44 (0)20 7795 5777 - Monday to Friday, 08.30 to 17.00 GMT

They should be able to point you in the right direction about have to escalate a merchants non-compliance as you don't know the bank providing services in this case.

My knowledge of PCI-DSS comes from a major project I've been involved in for the last year or so where compliance to this holds a big role, (for customer confidentiality reasons I can't say who but there's a good chance your card details could go through it at some point in the next year ), but my involvement is more from a technical design side instead of operational.

We're required to have a knowledge of the requirements as part of that.

 

[daz]

Places that don't ask you for a CVV for a repeat transaction probably have your card on Continuous Authority.

 

[James J]

Our local Chinese knows our address from the phone number but not bank details

same, if I was the OP I'd also be pretty concerned.

 

[Stretch]

You are allowed to keep card details if you ask the customer and meet all kinds of stringent security standards (PCI DSS etc) e.g. Amazon One Click Checkout.

I very much doubt the fast food place has any of this.

This is why I periodically 'loose' my card and get sent a new one next day by Halifax, I do it also when I hire a car or any other deposit argument waiting to happen.

That wont work. Once you give you card details they're entitled to take the money you agreed to at the time you gave the details. New card or not.

 

[Fr0dders]

Apple account stores CCV as well

I can purchase apps / music from my apple iphone without entering anything other than my apple account password

 

[SlugForAButt]

It's one thing remembering a customer and what they eat. That's good service (My curry takeaway know me by my voice as soon as I call and it saves me having to remember my order 'cause I always get the same).
Remembering my CC details would make me change my card details and eat from somewhere else. Simple as that!

 

[Westyfield2]

My understanding of it all:

They can store your card details, aslong as they're held in accordance with the DPA and you agreed to them storing them.
Whether reading the details outloud from the phone in a busy shop with other customers present based solely on the Caller ID is a good idea however...

They cannot store the CVV number. Ever. As per PCI-DSS.

Websites where you can buy without entering your CVV again (e.g. Steam) are not (well should not!) be storing your CVV number. They are simply processing the transaction without it. They've already used it once to prove that you were on possession of the card and now trust you.
ISTR something along the lines that for transactions done without the CVV the retailer will be charged a higher percentage in card processing fees.


All AFAIK. IANAL etc.

 

[Fr0dders]

re: steam, apple, play.com, amazon

are they just charging the card from outside the UK thus not bound by UK regulations ?

Steam and Apple are both american companies, play is based in the C.I. ...

 

[daz]

re: steam, apple, play.com, amazon

are they just charging the card from outside the UK thus not bound by UK regulations ?

Steam and Apple are both american companies, play is based in the C.I. ...

No, it's continuous authority

 

[Marky]

is it illegal ? probably

does it help you get food quicker ? yes

gotta decide what matters most to you

Ahahaha this Until of course your card is wiped

 

[Van Hellseek]

My understanding of it all:

They can store your card details, aslong as they're held in accordance with the DPA and you agreed to them storing them.

I thought it was that it's perfectly legit for companies to store your details, but they have to delete them if asked to do so. In other words its something you opt out of, rather than requiring you to give express permission first.

I work in a hotel and we keep card details for our customers without their express permission as far as I'm aware. (I don't take bookings so don't quote me on that tbh).

 

[Nix]

Blackmail them into getting some free chicken balls!

 

[Twentyone]

Hm, I've known my local to keep my card details but they never ask for the security code as they dont need it

 

[HAz]

Go in give um a slap on the wrist and say naughty! then order a donner with all the trimmings