On a related note, could anybody comment on their experience getting PCI compliance?
I'd like to have the payment process a bit more integrated with my web site, but many of those solutions seem to require PCI compliance, and that looks rather involved.
There are several levels of PCI compliance. At PowerPay we spend thousands of dollars becoming compliant and staying that way. For most merchants, the requirements are far less onerous. The biggest tip I can give is don't store card numbers. Ever. Just pass the info along to your payment gateway and forget it. Let them deal with the compliance and risk. Take my advice for what it cost and speak with your sales agent for the exact guidelines you need to follow.
I'd like to have the payment process a bit more integrated with my web site, but many of those solutions seem to require PCI compliance, and that looks rather involved.