thanks for the reply Jason.
I'm still not 100% clear on the difference between PCI and PA compliant.
Would it be true to say if ecart 5 was utilised properly, in that c/c transactions to a payment gateway were carried out via an ssl, and no card information was stored or otherwise distributed, that the site would be, by definition, PA compliant ?
(I see that the WA site carries the pci logo)