15 {{ upvoteCount | shortNum }}
15 {{ upvoteCount | shortNum }}

LaunchTree Payment Page

by Sean Kelly
13 replies
Hey there,

The payment page for LaunchTree is hosted on the LaunchTree's own domain. This might not seem like a big deal to many of you but it really is a big deal.

If you want to accept credit-card payments through your own webpages you and your server must be PCI compliant. Not only that but you also need your own merchant account.

Why not just use PayPal or Clickbank? Because your conversions will be crap when you want to do cross-sells, up-sells, down-sells since your clients need to enter their payment info each time. Armed with a merchant account and PCI compliant server you can do one-click-payments and skyrocket your conversions.

From doing a traceroute it seems that their hosting provider is SoftLayer. I contacted SoftLayer and they told me they provide the hardware and security to be PCI compliant, but it will be up to me to get the server PCI complaint.

So does anybody know how they did that? Which merchant provider they use? How much it cost them?

Thanks!
Sean
#launchtree #page #payment
  • Profile picture of the author nathanj
    Filsaime does a lot with Authorize.net

    Don't know if he used them with this launch but I'd take a stab and say he did.

    Why not contact him through his helpdesk. Won't hurt to ask.
    {{ DiscussionBoard.errors[779196].message }}
  • Profile picture of the author GarrieWilson
    It's not that hard to be PCI compliant.
    Signature
    Screw You, NameCheap!
    $1 Off NameSilo Domain Coupons:
    SAVEABUCKDOMAINS & DOLLARDOMAINSAVINGS
    {{ DiscussionBoard.errors[779234].message }}
    • Profile picture of the author Sean Kelly
      Originally Posted by GarrieWilson View Post

      It's not that hard to be PCI compliant.
      Really? I see new vulnerabilities every second day reported by my McAfee secure scan. These vulnerabilities make my server non-PCI compliant.

      This means server software needs to be updated a few times a week just to maintain PCI compliance.

      Do you use a service that does this for you?

      Sean
      Signature
      http://javadocs.com - Javadocs
      {{ DiscussionBoard.errors[779249].message }}
  • Profile picture of the author GarrieWilson
    If SecureScan is as good as SiteAdvisor then I wouldn't trust it - at all. SiteAdvisor gives a lot of false positives. It flagged a few of my sites as phising/scam sites.

    You could outsource it or get a good host that does server updates. Mine patches as they are released w/out my input. They also do extra security "stuff" to try and keep people out.

    I personally don't accept CCs on my own and probably never will. You can still do one-click upsells and pass to an offsite to verify when it's done.
    Signature
    Screw You, NameCheap!
    $1 Off NameSilo Domain Coupons:
    SAVEABUCKDOMAINS & DOLLARDOMAINSAVINGS
    {{ DiscussionBoard.errors[779314].message }}
    • Profile picture of the author FrankRumbauskas
      Mike and I use the same merchant account provider - PM me if you need contact info.

      Why not just use PayPal or Clickbank? Because to many, it's a red flag that you're fly-by-night. Or that you're a criminal or in bankruptcy (the only two reasons you'd be denied a merchant account).

      I rarely log into WF anymore and I'm shocked that the same myths about merchant accounts are still running rampant like they were years ago.
      Signature

      New York Times Best-Selling Author
      Certified Google Partner Company
      Fast Company's Top 30 Most Influential People Online

      {{ DiscussionBoard.errors[779339].message }}
      • Profile picture of the author GarrieWilson
        Originally Posted by FrankRumbauskas View Post

        Why not just use PayPal or Clickbank? Because to many, it's a red flag that you're fly-by-night. Or that you're a criminal or in bankruptcy (the only two reasons you'd be denied a merchant account).
        That's total bullshit.

        PayPal increases conversitions and most people don't have a clue ClickBank is a 3rd party processor or even care.

        Most people don't even know the "two reasons you would be denied" are. Which is also more bullshit. I got denied years ago and I am not and was not either. I had no credit rating.

        Go ahead and PM your affiliate link though. :rolleyes:
        Signature
        Screw You, NameCheap!
        $1 Off NameSilo Domain Coupons:
        SAVEABUCKDOMAINS & DOLLARDOMAINSAVINGS
        {{ DiscussionBoard.errors[779365].message }}
      • Profile picture of the author Sean Kelly
        It's more of a case of needing a way to easily do up-sells, down-sells & cross-sells without the customer having to enter their information again and again and again.

        Having your own merchant account with PCI compliance is the only way I can see to do the job. Unless I'm mistaken?

        Sean
        Signature
        http://javadocs.com - Javadocs
        {{ DiscussionBoard.errors[779379].message }}
        • Profile picture of the author Dan Liptak
          As long as you are not storing any sensitive CC data, then you will be fine with just hosting your own order form (on SSL) and using your merchant accounts API to complete the transaction.
          {{ DiscussionBoard.errors[779736].message }}
          • Profile picture of the author Sean Kelly
            Originally Posted by Dan Liptak View Post

            As long as you are not storing any sensitive CC data, then you will be fine with just hosting your own order form (on SSL) and using your merchant accounts API to complete the transaction.
            I haven't seen that to be true, who allows YOU to do this?

            My gateway provider (SagePay/Protx) are insisting that I become PCI compliant even though I do not store CC information on my server.

            Sean
            Signature
            http://javadocs.com - Javadocs
            {{ DiscussionBoard.errors[779747].message }}
            • Profile picture of the author Dan Liptak
              Here is what the authorize.net site says:
              Customer Information Manager
              {{ DiscussionBoard.errors[779756].message }}
              • Profile picture of the author Sean Kelly
                Originally Posted by Dan Liptak View Post

                Here is what the authorize.net site says:
                Customer Information Manager
                Thats nice I like that even though its an extra $20/month but perhaps worth it.
                The problem with Authorize.net is that their preferred merchant suppliers only work with US residents.

                There are other merchants in the US that work with clients outside of the US (such as myself) but they then slap on a 5.5% processing rate!

                My own merchant provider give me a 2.75% processing rate and I found a lower one in the Netherlands today.

                Sean
                Signature
                http://javadocs.com - Javadocs
                {{ DiscussionBoard.errors[779839].message }}
            • Profile picture of the author Dan Liptak
              Originally Posted by Sean Kelly View Post

              I haven't seen that to be true, who allows YOU to do this?
              Oooops, didn't respond to the who part. I have done many integrations with Infusionsoft and as long as the order form is on SSL they are cool with it.
              {{ DiscussionBoard.errors[779781].message }}
  • Profile picture of the author Marian Berghes
    thats whay I was about the say...even if your using authorize directly or trough a reseller it still allows you to do 1 click upsell cus the customer profile is stored on their servers even if you have your own hosted payment page.

    I think Mike explain this in some video somewhere or report, I know I read it but can't remember.
    {{ DiscussionBoard.errors[779775].message }}

Trending Topics