I'd like to create a Form where a web visitor can enter personal information and then I can get it and process it securely. After reading about Secure Mail Forms, I'm wondering if it would be more secure to create a PHP Upload Form, rather than emailing the information via a Mail Form. I look forward to replies/opinions. Thanks.
I'd assume this would be behind an ssl, not that that's 100%, but it really comes down to how secure your server is. Mail is pretty vulnerable, but your server could be just as vulnerable. If you provide a more depth to what your collecting and for what reason, we may be able to provide a better plan of action.
The plan is to pay subscontractors via my bank's Bill Pay feature. So I wanted to set up a Form on a web page where the subcontractor's could provide bank info, routing no., account no. etc, so that info could be taken from the web database and entered into the bank's secure Bill Pay page. So they could be paid regularly via BillPay. I look forward to your thoughts/suggestions. thanks
SSL is a must. Like SecureCP said, it has it's problems but it's better than nothing. I'd encrypt the info using PGP and then get it off your server (either by email, sftp, whatever) to another location, just to provide an extra barrier of protection. As soon as you entered it to your Bill Pay page, delete it. You can never be too paranoid when dealing with others peoples financial info. If I were doing this, I'd use a reputable 3rd party service to collect and store info as well as send payments.