The RSI Security website breaks down the ways in certain depth, but the procedure in essence goes like this: Handling the entry of credit card facts from clients; particularly, that sensitive card information are collected and transmitted securely Stripe.js v2 SAQ A-EP Making use of Stripe.js v2 to move card https://www.nathanlabsadvisory.com/blog/tag/data-processing-activities/