in reply to Re: collecting sensitive data
in thread collecting sensitive data
Thanks for the replies.
I have convinced the client to not store any of the sensitive data online...however, they do need to collect this information from the site somehow.
Any thoughts on how to simplify things? Perhaps encrypting the sensitive data and emailing it to the client? (maybe breaking the data into two emails?)
I know PCI issues will still exist (for the client), but I want to make sure that my link in the chain is secure.