carlosbilangieri5521973113198 | Stripe Developers | Page 1

graceful tuskBOT Dec 7, 2023, 12:19 PM

#

Hello! We'll be with you shortly. Below are links to other discussions we've had with you in the past week in case you want to review that information. If your question is related to one of these previous discussions, please provide a comprehensive summary of the current state and what you need help with now. We help many users simultaneously, so a summary allows us to resolve your issue as soon as possible.

carlosbilangieri5521973113198, 2 days ago, 3 messages

sterile arrow Dec 7, 2023, 12:19 PM

#

Hi

#

We have integrated your Software (Space Manager) www.radicalsys.com

#

with Stripe API v1...

#

The customers that want's to Sign up with Stripe now, have been requested to fill out a form to enable enabling access to raw card data API

#

Now the they are requesting a PCI Complience document...

shell walrus Dec 7, 2023, 12:22 PM

#

hi! yep, that's expected as we are tightening the ability to pass raw PANs this year(as it's often a vector for fraud).
https://support.stripe.com/questions/enabling-access-to-raw-card-data-apis

#

just so I understand, are you saying you are the developer of this software you mention?

sterile arrow Dec 7, 2023, 12:24 PM

#

Yep...

#

I am the developer of the integration...

#

But in this case, only registered companies uses our software...

shell walrus Dec 7, 2023, 12:24 PM

#

and it works by users copy and pasting their Stripe API keys into your application?

sterile arrow Dec 7, 2023, 12:25 PM

#

The API Keys are encrypted into the software...

shell walrus Dec 7, 2023, 12:26 PM

#

sure, but the point is you are not using our Connect product to connect to the user's Stripe account right? and instead the user copies their own account's API keys from their Stripe Dashboard and provides it to your application?

sterile arrow Dec 7, 2023, 12:26 PM

#

once the API Key is added to the software it can't be seen anymore..

sterile arrow Dec 7, 2023, 12:26 PM

#

shell walrus sure, but the point is you are _not_ using our Connect product to connect to the...

Yep.. we are a Windows based application

shell walrus Dec 7, 2023, 12:26 PM

#

sure, but that's not what I'm asking

#

cool

#

and your application sends raw PANs to the Stripe API?

sterile arrow Dec 7, 2023, 12:26 PM

#

Yep...

shell walrus Dec 7, 2023, 12:27 PM

#

then as I said this is all expected and the users have to provide PCI compliance docs, as far as I know

sterile arrow Dec 7, 2023, 12:28 PM

#

Yep, but our software does not store any card infomation...

shell walrus Dec 7, 2023, 12:28 PM

#

we have no way to know that your application is being used since it's just the user's API keys and it will look to us like they are sending us raw PANs

#

sure but it has access to the card information

#

I suggest writing to https://support.stripe.com/?contact=true overall to get in touch with us

#

I appreciate that might be hard since you probably don't have a Stripe merchant account directly, but there is a team involved in these PCI changes and you can try to get in touch with them

sterile arrow Dec 7, 2023, 12:29 PM

#

Do you have any email contact?

#

That I can reach the PCI complaince team?

#carlosbilangieri5521973113198