Thanks a bunch, Justin. This is very helpful!
Your credit card stolen comment reminds me of another question, hope you
don’t mind. Do you guys store the credit cards on your site (e.g.
similar to amazon)? We aren’t planning on storing credit cards at this
point and even though it’s inconvenient for customers, we’ll ask them
for this info each time.
What are your thoughts on storing credit cards versus not?
We use ActiveMerchant. It acts as a abstract API to most of the
popular online processing gateways. It’s offer support for both
gateways which host the html and also sending data to the gateway as a
background post. We are using it to process to Authroize.net,
Braintree, and Paypal. If you are looking for a merchant account as
well I would recommend looking into Braintree as their customer
support is superior to Authorize.net.
Lastely, keep in mind that if you want to collect the customers
payment information only on your site, you are responsible for making
sure your application is PCI DSS complaint which are the security
standards from the credit card companies. There are hefty fines (>
$500,000) if you have card data stolen from one of your sites.
Many of the payment gateways that ActiveMerchant services have
solutions to accept data in a secure manner.
On Apr 26, 10:44 am, Ben K. [email protected]