hillct - JavaScript Disabled | Stripe Developers | Page 1

rain pebble Oct 5, 2021, 10:00 PM

#

Hello! The short answer is no. The long answer is yes, but you need to be PCI compliant and handle raw card information yourself.

halcyon perch Oct 5, 2021, 10:01 PM

#

Pretty much what I figured. Out of curiosity does stripe offer a solution wherein we can do on-premise PCI compliance storage in cooperation with stripe or are you suggesting a solution that bypasses stripe entirely?

rain pebble Oct 5, 2021, 10:02 PM

#

No, we don't have anything like that. We do have APIs that let you pass us raw card information (such as information collected with vanilla, non-JS HTML forms), but the card data would flow through your server, which is why you'd need to be fully PCI compliant.

#

Have a look here under the API Direct tab: https://stripe.com/docs/security/guide#validating-pci-compliance

halcyon perch Oct 5, 2021, 10:04 PM

#

That is as good if not better a solution than I was thinking of. I trust PCI compliance review is something that requires many months and lots of paperwork so is unlikely to be something we can deploy in the next three days.

rain pebble Oct 5, 2021, 10:04 PM

#

Yeah, it's not going to happen in three days. 😅

halcyon perch Oct 5, 2021, 10:04 PM

#

Of course I write this not having reviewed the link you just sent me so let me go do that and see how best to proceed thanks

#

Yeah of course it isn't. Thanks for your help.

#hillct - JavaScript Disabled