I am currently building a website for a business I plan to start up sometime this year. I have a few questions as to what the requirements are for an e-commerce site and best practice for some parts. I will number the questions so that they can be answered by simply numbering the answers.
1. SSL Certificate
One thing I will likely be doing when the site launches is using a third party such as PayPal to handle payments to begin with. I know that PayPal uses it's own site/SSL Certificate to take the payment but would I still require an SSL Certificate on my site even if I don't hold any personal information at all?
I will at some point have my own checkout system (at which time I will have a valid SSL certificate). What testing should I do to make sure it is as secure as possible?
If I think of any other questions, I'll post them.