This client needed a form to collect sensitive data on his website. Since sending data over email is never secure, I suggested the following solution:
- Purchase a secure certificate so when data is sent over the internet it would be encrypted.
- Send an email notification to the client that a new form has been submitted. Only very general data was included in the email. Date, name…
- Sensitive data was stored encrypted in the database.