I am evaluating Payeezy for use with a swipe device but I have some concerns regarding security/PCI compliance.
I dont see an SDK or a mag stripe reader available for use with Payeezy. Can you confirm whether one is available?
If one is not available I assume we can just use one that will let us read the number from the device and then pass that to the appropriate SDK to get the token. Is that correct? Does the fact that the our code is handling the CC number on the mobile device mean that we are no longer PCI compliant or does it only become an issue if we send the CC number to our server?
Here is the workflow i have in my mind.
1. User swipes Credit Card (CC) on iPad which has a Mag Stripe Reader attached
2. The API for the reader reads the CC number and passes it to our code
3. Our code sends this to the Payeezy API to obtain a token
4. The token is sent to our server for charging later on
Does the fact that the CC number is handled by our code on the device cause a PCI issue?