boatyang
Forum Replies Created
-
Hi Maltfield,
please feel free to contribute the codes at https://plugins.trac.wordpress.org/browser/payment-addons-for-woocommerce/ which is our only public repo for this plugin currently (free version).
Thanks,
Hi Maltfield,
Short Answer: NO – Our plugin does not expose your server to customer payment information, and your server remains outside the scope of PCI DSS compliance requirements.
Technical Details:
- No Sensitive Data on Your Server: Our plugin never processes, transmits, or stores sensitive payment data (credit card numbers, CVV, etc.) on your WordPress server. All sensitive payment information flows directly from the customer’s browser to Stripe’s PCI-compliant infrastructure.
- Two Implementation Methods:
- Stripe Checkout (Redirect): Customers are redirected to Stripe’s hosted checkout page, so sensitive data never touches your domain
- On-Site Forms with Stripe Elements: When customers enter payment details on your site, we use Stripe.js and Elements, which securely transmit data directly to Stripe via encrypted connections. Your server never sees the raw payment data.
- Tokenization: Any payment references stored in your WordPress database are tokenized identifiers provided by Stripe (like payment intent IDs or customer IDs), not actual payment data.
- PCI Scope: Because sensitive payment data bypasses your server entirely, your infrastructure falls under Stripe’s PCI compliance umbrella rather than requiring your own PCI certification.
Important Note: While our plugin keeps you out of PCI scope for payment data, you should still follow general security best practices for your WordPress installation and ensure you’re compliant with other data protection regulations (like GDPR) for any non-payment customer data you collect.
Hope these information helps.
Best
Hi Maltfield,
Our plugin is fully based on Stripe SDK and APIs, therefore, please refer to https://docs.stripe.com/ips for the firewall IPs/Domains. Currently, from our plugin, we only used
api.stripe.comand also its webhook features.Thanks
Nice finding! We have make up the missing tag for v1.13.12 and also released the latest v1.14.0 with tag as well.
Hi there,
From my understanding, the issue was happened only on stripe transaction detail page where the product items list. The total price still consists of all 22 items.
Would you mind to share the 3 missing items details? Are there any types or pricing special? Or if any discount etc, these information would help us to look into. We would like to reproduce the issue first.
Thanks,