We have a production site for B2B purposes, and have some transactions that have a paid portion which is currently using PayPalPaymenntsPro as the payment processor. We accept PayPal, Visa and Mastercard payments. We need to remove the site this is running on from our PCI audit scope. The CC payments are currently entered within a form on the site itself, which is a problem. We need all capture of the CC data to be handled externally from our own site (at PayPal's secure portal).
We are having trouble getting this to work (we were told to change to PayPal Plus. CC data is still captured on the site itself, and to pay with a CC through PayPal it requests a PayPal account login. We don't want to force our customers to create a PayPal account.
Anyone have a solution to this?