I am getting ready to setup an osCommerce store for someone who already has hosting in place. If we are going to use paypal exclusively for the transactions, credit cards or paypal accounts, does the site hosting osCommerce need to be SSL? Seems as though it wouldn't since all the secure transactions are going through Paypal but I don't know for sure. Thanks!
Latest News: (loading..)
0
Does my osCommerce site need to be SSL if we only use PayPal?
Started by bolivartech, Apr 17 2009, 19:05
6 replies to this topic
#2
Posted 17 April 2009, 20:33
bolivartech, on Apr 17 2009, 03:05 PM, said:
I am getting ready to setup an osCommerce store for someone who already has hosting in place. If we are going to use paypal exclusively for the transactions, credit cards or paypal accounts, does the site hosting osCommerce need to be SSL? Seems as though it wouldn't since all the secure transactions are going through Paypal but I don't know for sure. Thanks!
As a shop owner using this software, as well as being a internet shopper, I wrestled with the same question. I opted to place the SSL certificate on my site, even though I also only use PAypal for checkout. My logic was as a customer, I always look for the "little lock." I figured being a SSL secured site would only increase the odds of customers remaining on my site and completing future sales.
Fred
Frederick C Brace,III PA-C
www.21st-tees.com (osc)
www.tanda-designs.com (osc)
www.21st-tees.com (osc)
www.tanda-designs.com (osc)
#3
Posted 17 April 2009, 20:42
fbrace, on Apr 17 2009, 03:33 PM, said:
As a shop owner using this software, as well as being a internet shopper, I wrestled with the same question. I opted to place the SSL certificate on my site, even though I also only use PAypal for checkout. My logic was as a customer, I always look for the "little lock." I figured being a SSL secured site would only increase the odds of customers remaining on my site and completing future sales.
Fred
Fred
That makes perfect sense to me. So basically we could continue on without it but customers might not consider the site safe to buy from. I know that I too seek the "little lock" before I send my information out. I guess I need to see how much getting the site SSL secured will be. Thanks.
Levi
#4
Posted 17 April 2009, 23:32
bolivartech, on Apr 17 2009, 04:42 PM, said:
That makes perfect sense to me. So basically we could continue on without it but customers might not consider the site safe to buy from. I know that I too seek the "little lock" before I send my information out. I guess I need to see how much getting the site SSL secured will be. Thanks.
Levi
Levi
Fred
Frederick C Brace,III PA-C
www.21st-tees.com (osc)
www.tanda-designs.com (osc)
www.21st-tees.com (osc)
www.tanda-designs.com (osc)
#5
Posted 23 April 2009, 03:24
Yepp, the "little lock" is king! Your site would seem inferior without it. Also, although the financial info is only going to PayPal, you will probably be collecting name and address info through your own site, and it's nice for that process to be protected by SSL.
~Wendy
~Wendy
#6
Posted 03 October 2009, 18:09
You'd be increasing your chances of being invited to court if you transmit any personal information from the EU to your servers without using SSL. I'm not sure how it'd affect businesses operating outside of the EU with EU customers (if it affects them at all), but certainly for those within the EU legislation forbids transmission or storage of personal data insecurely, and deters the transmission of data to "third countries" (non-EU countries) unless the recipient of the data has adequate protection in place or with express permission of the individual that the data relates to.
This proves a problem especially for EU businesses that are using host servers in third countries.
Personal information is defined as any data that can be used to identify a particular individual, or any data that, when combined with any other data the business holds, could identify the individual. So as soon as you have a name or address etc then all the information you hold relating to that individual must be held and transmitted securely (both electronically and physically).
This proves a problem especially for EU businesses that are using host servers in third countries.
Personal information is defined as any data that can be used to identify a particular individual, or any data that, when combined with any other data the business holds, could identify the individual. So as soon as you have a name or address etc then all the information you hold relating to that individual must be held and transmitted securely (both electronically and physically).
bolivartech, on Apr 17 2009, 08:05 PM, said:
I am getting ready to setup an osCommerce store for someone who already has hosting in place. If we are going to use paypal exclusively for the transactions, credit cards or paypal accounts, does the site hosting osCommerce need to be SSL? Seems as though it wouldn't since all the secure transactions are going through Paypal but I don't know for sure. Thanks!
osCommerce is GREAT. When it works...
#7
Posted 05 October 2009, 06:29
bolivartech, on 17 April 2009, 19:05, said:
I am getting ready to setup an osCommerce store for someone who already has hosting in place. If we are going to use paypal exclusively for the transactions, credit cards or paypal accounts, does the site hosting osCommerce need to be SSL? Seems as though it wouldn't since all the secure transactions are going through Paypal but I don't know for sure. Thanks!
No, my site doesn't have SSL and I have been taking payments with the basic paypal module
