I see that you are storing the credit card number in the database, can anyone comment on web2py servers and PCI compliance? I'm using other methods to integrate with paypal, and now authorize.net so that i don't store the credit card info on my server. This is more out of fear that real knowledge about how to do it right.
thanks, christian
