Putting your business online is like opening a new store that can be visited by anyone around the world. This enables you to reach more customers, but it also creates more opportunities for online criminals.
E-commerce websites are often targeted by attackers because they want to get customers' personal and payment data to commit fraud.
How to protect your business
This guide will help you understand what you need to do to:
- get your business accepting payments online
- keep your e-commerce website safe and secure, and
- protect your customers' information.
1. Understand what you need
Here are some things you'll need to put in place to allow you to collect payments from customers online.
An online store or e-commerce system
If you're adding a shopping cart to your website, it needs to be well-built and secure as it will make your site a prime target for online attackers.
You'll need to choose either:
- an off-the-shelf online shopping cart (for example, Shopify, Squarespace or Wix) – these dedicated e-commerce companies continually update their software to respond to evolving risks
- have an e-commerce system custom-made for your website – make sure you understand the security features your IT service provider will include.
If you plan to use an IT service provider to create or recommend your e-commerce system, our guide on choosing an IT service provider will help you ask the relevant questions. Although they'll be the ones doing the technical work, you'll be responsible for keeping your customers' information safe.
A payment gateway
A payment gateway allows you to accept online payments. Each payment type (credit card, debit card, bank transfer) has important security and compliance factors that you need to consider. We recommend that you get in touch with your bank to discuss payment gateway options.