SSL for webhost when using PayPal Payment Pro Gateway
Permalink Browser Info Environment
Hello,
I'm new to creating an ecommerce website and will have a site that will sell prints and originals of art pieces. My plan is to only have the site accept payment via PayPal and checks. Now, when setting up the PayPal payment method thru eCommerce I have learned that SSL is not required for credit card transactions, however personal information such as home address, phone number, etc. are in the open (so I need to consider SSL on my end on my web host's server. Now, if I use the PayPal Payment Pro Gateway, how does this effect SSL requirements, for credit card transactions, and other personal information (home address, phone number, etc)?
Any guidance/advice would be truly appreciated.
Thank you very much for your time,
-concreteart
I'm new to creating an ecommerce website and will have a site that will sell prints and originals of art pieces. My plan is to only have the site accept payment via PayPal and checks. Now, when setting up the PayPal payment method thru eCommerce I have learned that SSL is not required for credit card transactions, however personal information such as home address, phone number, etc. are in the open (so I need to consider SSL on my end on my web host's server. Now, if I use the PayPal Payment Pro Gateway, how does this effect SSL requirements, for credit card transactions, and other personal information (home address, phone number, etc)?
Any guidance/advice would be truly appreciated.
Thank you very much for your time,
-concreteart
Type: | Discussion |
---|---|
Status: | New |
It is my understanding if all the credit card information is entered via Paypal, you don't necessarily need SSL. With some carts the browser will tell users that the site is not secure or safe, and in that case, an SSL cert is needed to gain the trust of potential buyers.
Basic user data, i.e., name, address, phone can be obtained quite easily these days. The key is to guard the credit card info, Social Security #s (USA), etc., the pieces that could lead to identity theft.
Honestly, SSL security is not that expensive, thus not using it seems unwise when you consider the risks otherwise.