Hi all, I plan to use an ‘unpublished’ page of my website (visible to me but not to visitors of my website) to collect data in order set up my clients projects.
This will include a form to gather name, email, address, as well as a few multi-choice options, fees and payment dates. Once submitted, the form will activate a ‘to-do’ email for the client and a notification for me.
What I’m hoping to do is gather the clients credit card details here as well (so I have all the info I need to begin a project, in one place).
Is it secure to collect credit card details on a form which I would embed into my website, albeit not visible to the general public?
I won’t have an online shop; the credit card details will just be entered manually into my machine in the office.
Thanks very much 
No. Don’t do this. AC is not likely designed to be PCI compliant for such things, and quite frankly you’re not likely to be either (if so, you wouldn’t have asked).
Setup with some 3rd party billing solution that can let them enter their card details then charge them as you desire.
Trust me, you do not want to ever have their card info. If you never have it, you can never be blamed if their card is stolen, etc.
2 Likes
Of course no and no, you don’t want to do things like this via simple fields. There are a lot of different possible ways for you to set up that kind of activity. For example, some banks have features to plug in their extension to do everything’s with cards, and they will securely send every piece of info to you or to a database. As a developer I tried a lot of different ways to do it and here I have with external plugins to be sure that everything is safe.