The Community forums are being phased out in favor of a new Slack group.
Add your email address below to get an invitation to join the community slack group
credit card form - email notification changed
Hi Jamie ... Hello Steph!
Formidable is really great .. no problems since 2 years ....
On my website I added your credit card payment form ( http://www.hellerbass.com/en/payment/ ) ... all worked pretty well ... my email notifications showed full card number, expiry date plus cvc code ... and in WordPress dashboard only last 4 digits of card number was saved at Formidable plug-in.
A few days ago I made updates including Formidable (since 2 years first time with updates - sry) .... and now my email notifications are showing only 4 last digits of card number ... and no cvc .... it's x-ed .... pretty useless at the moment.
I just had a look at my settings in Formidable ... but all I can change there is the way it is stored at dashboard at Formidable plug-in .... how can I enable the email notification to show the complete credit card details again?
My website is ssl secured.
Kind regards
Gregor
January 25, 2019 at 11:04 pm
Hi Gregor,
If you are expecting a reply from Steph or Jamie, you may want to remove the question you posted here and open a support ticket on the formidable forms help desk instead (https://formidableforms.com/new-topic/), as this is a public forum. I suggest you look into a payment processor like Stripe to store your customer's credit card information rather than storing it on your website. I also never receive confirmation emails from any online merchants that I purchase from which include entire credit card numbers and CVV codes. To me, sending full credit card info in an email is risky plus you would be sending back valid info that your customer provided you. Good luck!
January 26, 2019 at 1:35 am
Dear Roja!
Thank you ... will do.
This is not an online payment system ... it's only a transmitting system of their credit card details ... the same as when transmitted by phone.
Kind regards
Gregor
January 26, 2019 at 5:53 am
Even thought you don't have a traditional order checkout system, you do store credit card information on you website and likely should either be PCI compliant (https://securionpay.com/blog/do-i-need-to-be-pci-compliant/) or use a service such as Stripe to possibly eliminate the PCI compliance concern (although much of what it takes to be PCI compliant is good to do regardless of whether or not your website accepts credit card payments). Stripe handles the credit card info, not your website. I sleep better knowing that my sites do not store credit card info.
If you don't think hackers are trying to access your website, install WordFence. It is a real eye-opener.
Best of luck!
Discussion closed.