Im setting up an online booking system for a charter flight company, and they wanted to handle online payment. They are with westpac so I did some searching and found westpac has its own online pay system called Payway which allows for purchases online. Now when I read the information that I could find, it appeared that I wouldnt need to worry about setting up a https page and a SSL cert as all the credit card details would be handled via their website, and all I would have to send would be the cost information. The more I read the API documentation, I am starting to think that this isnt the case at all, and that I will still need to set up a SSL cert and all that. I am still waiting for the approval for use of the Payway system to be set up for the company, so I cant actually get into the API and do any testing and such, so I thought I would ask on here to see if anyone had any experience with it so that I would know if I need to start figuring out how to handle it using a SSL cert. TL;DR> Do I need to have a HTTPS page on a website to use the Westpac Payway system and API or do I not need to worry about that.