Hello, I don’t have much experience in self-hosting, I’m buying a ProtonVPN subscription and would like to port forward. I have like no experience in self-hosting but a good amount in Linux. I’m planning on using Proxmox VE with a YunoHost VM. I already have a domain name from Njalla. I’m setting up a website for my computer store. I want it to have listings and payment options so they can check out there. I want my customer data to be secure. I don’t want it to have any JavaScript or nasty trackers. I want it to be FOSS. Any help is highly appreciated!

  • @cm0002@lemmy.world
    link
    fedilink
    English
    527 months ago

    I feel like it was just a few months ago someone else was asking this very similar thing, including wanting to handle payment processing themselves as well.

    Seriously OP, do not do payment processing on your own unless you already have experience with going through PCI compliance. And if you did, you would already have made the decision to off load it to an actual payment processer lmao

    Don’t be a hero, offload payment processing to a third-party.

    • @just_another_person@lemmy.world
      link
      fedilink
      English
      127 months ago

      Second this wholeheartedly. There’s a reason businesses like Square space exist, and you will kill yourself trying to stay on top of things to stay up to date and secure.

      • @IHawkMike@lemmy.world
        link
        fedilink
        English
        57 months ago

        Third. The first thing I mention when one of my clients asks anything about PCI is to offload as much card processing onto third parties as possible.

        And if you have nothing in place yet, then 100% offloaded should be possible (with the possible exception of secure payment terminals if you need to process physical cards).

        That said, it is still possible to use your own hosted WordPress storefront and offload the payment processing via tokenization or redirection. But a turnkey solution like Shopify might be better if you lack the experience.

      • Encrypt-Keeper
        link
        fedilink
        English
        57 months ago

        For real. I handle PCI audits at work and at this point I’d pay somebody to do it for me.