The Payment Application Data Security Standard casts a large shadow over the order management system landscape this year. PA-DSS will be an even bigger issue next year, with the July 1, 2010, deadline for compliance. So we’ve added fields to this year’s grid to monitor the compliance status of each system. The March article “Worse than Y2K” covered this PA-DSS in detail, so we won’t repeat the ground rules here. But we should note that hosted solutions need only be PCI-compliant, not PA-DSS compliant.
As with all our roundups, the functional grades and ranks in the accompanying chart are based on the vendors’ own input — with very rigid ground rules. This gives you a chance to see where the providers believe their strengths lie.
Ernie Schell (firstname.lastname@example.org) is director of consultancy Marketing Systems Analysis, in Ventnor, NJ.
Software Review ’09 Table 1