[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 443
  • Last Modified:

Secure Payment Form?

Hi Experts. I have created a fairly comprehensive php form to register users to an event. It validates than directs them to PayPal for payment. The registration info is than emailed to myself and the payment is processed through our PayPal account.

We want to get away from using PayPal and are looking for a way to take the customers Credit Card info and process it ourselves (we have offline means of doing this). Essentially we need a script to secure the credit card information. Is best to email the CC info or have it stored in a database? Is an SSL certificate enough security?

I am definitely open to third party options however I'd like to keep my form/code as is and simply secure it if possible. Any suggestions would be great. Thanks.
0
brettsky07
Asked:
brettsky07
  • 3
  • 2
1 Solution
 
Ray PaseurCommented:
Are you located in the USA?  If so, go meet with your bank about the requirements.  There are penalties for getting this wrong and some of them involve handcuffs and prison.

SSL is one piece of the puzzle.  You would not want to email any credit card information ever.
0
 
Ray PaseurCommented:
One other question, what are you looking to gain by getting away from PayPal?
0
 
brettsky07Author Commented:
Good to know! Any suggestions to third party software? Getting a secure script than a secure database (hosted by third party) would be ideal. I have tried services such as Web Form Buddy but they basically just add more steps/forms after the user hits submit which seems kind of pointless. Not to mention they look terrible.
0
 
brettsky07Author Commented:
I think the fees are too high per transaction...
0
 
Ray PaseurCommented:
Wait till you see the bank and credit card fees before you decide that PayPal is expensive.  As to the 3rd party software, your bank has undoubtedly got its preferences.  I would choose the path of least resistance and that would likely be their recommended software.
0

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now