09 Aug 11 8:01 pm
You do not want to take credit card information in a form based on your webhosting, this will open you up to huge fines from the PCI-DSS people, basically they require anyone processing credit cards, whether off or on line to pass a test of how CC information is processed.
If you are processing CC details you WILL want to do this via a payment gateway, such as PayPal, SagePay or WorldPay, nochex etc etc. They all charge processing fees etc, but he simple truth is they reduce your liability in accepting credit cards on a website.
EDIT: And you will need an SSL certificate for your site as well, Don't get a self-signed certificate, pay the £60/year for a proper certificate from an authority