I'm starting a company which will preferably be accepting payments over the phone. Merchants don't like it when the card is not physically present because there's more of a risk, therefore getting approved for virtual terminals so you can charge in this manner is less likely. However, online self-serve checkout options such as paypal, 2co, etc are very common. That said, what's to stop me from using the online self serve checkout with the customer's information that was provided to me over the phone? In other words: I will take the customers financial information over the phone, then follow the paypal/2co checkout process as if I were the actual customer. Obviously they can see that all transactions are coming from the same IP but would this be an immediate red flag? What if customers were coming to my place of business and filling out their information on my computer?