e-commerce payment gateways (woocommerce)

bigdave

Well-Known Member
I've been asked to build an ecommerce site based on a theme which runs on woo commerce. That's the easy bit and I'm reasonably happy with the project apart from payment gateways... The last e-com site I built took paypal payments and that was fine but the client on this one is wanting to take credit / debit card payments too and tbh, I'm lost with it all!!

I can buy an SSL certificate with the hosting company (vidahost) which seems to be the bare minimum for the paid for plugins such as paypal pro but the likes of sagepay have much greater security requirements which I'm really not sure how to go about achieving (ie; PCI DSS certification)?

Firstly what is PCI DSS? and secondly, do I need to worry about it or am I much better off just sticking to the likes of PayPal Pro?
 
I've been asked to build an ecommerce site based on a theme which runs on woo commerce. That's the easy bit and I'm reasonably happy with the project apart from payment gateways... The last e-com site I built took paypal payments and that was fine but the client on this one is wanting to take credit / debit card payments too and tbh, I'm lost with it all!!

I can buy an SSL certificate with the hosting company (vidahost) which seems to be the bare minimum for the paid for plugins such as paypal pro but the likes of sagepay have much greater security requirements which I'm really not sure how to go about achieving (ie; PCI DSS certification)?

Firstly what is PCI DSS? and secondly, do I need to worry about it or am I much better off just sticking to the likes of PayPal Pro?

PCI DSS are the standards for accepting card payments, whether that be online or through a PDQ machine. This isn't down to you though, this is the customer's problem and it is down to them to organise certification with their Payment Gateway provider. And do not let them try and fob it off on you as there are commitments to processes to be agreed between the customer and the provider and you simply cannot/must not agree these processes on behalf of the customer. They should sort all of this and give you a final code for woocommerce to communicate with the Payment Gateway. That's all you should be doing!!!
 
cheers dude.

I think it's a new business and they're not that sure what they should be doing with things. Will email them and pass the info on. :icon_smile:
 
If it helps, we get our PCI DSS certification through Trustwave. This is a prerequisite from our PDQ machine provider.
 
cheers dude.

I think it's a new business and they're not that sure what they should be doing with things. Will email them and pass the info on. :icon_smile:

That's why they need to contact their new provider and talk it through :icon_biggrin:
 
Back
Top