Welcome to WebmasterWorld Guest from 188.8.131.52
Forum Moderators: buckworks
This means you don't have to deal with PCI Compliance at all.
If I understand you correctly, checkout is handled as a SaaS by a provider.
Not true; You still need to follow the PA-DSS guidelines.
If you're storing payment authorization codes (handy if you ever need to issue a refund), are they stored securely in a separate database (not on your web server), behind a firewall?