Since you are accepting credit cards, you need to be PCI Compliant. With Stripe providing the credit card processing, this has become a lot easier.
Here is what you need to do (as of Feb 1, 2019):
- Log in to your Stripe dashboard at https://stripe.com
- Click on "Settings" and scroll down until you see a heading for PCI Compliance. Click on that.
- You will be asked a couple of questions to complete your self assessment questionnaire (SAQ). Stripe completes the rest for you.
- If you are asked for proof of PCI Compliance, provide your SAQ. Stripe provides it. Click on the View SAQ A button to get a copy.
This is an easier process than with Moneris/Vantiv or PayFlow Pro gateways because Stripe handles credit cards differently. Stripe converts the credit card number to a token in the donor's browser. Thus, the credit card number never passes through your servers or CharityWeb's servers; it only goes between the donor's browser and Stripe.