Building smart websites for small businesses

Tag: ecommerce

1 to 10 of 38 posts tagged with ecommerceview tags

Major sites running unauthenticated JavaScript on their payment pages. The article title says it all. The TL;DR is this: if your payment page requests external files, this is most likely JavaScript or CSS files from CDNs, then you need to ensure that those files have not been tampered with before or during the payment process, because a malicious hacker could very easily intercept payment card details. This is precisely what happened to British Airways!

The solution is to use SubResource Integrity (SRI) which basically involves adding an "integritiy" attribute to your script or link element, like this:

<script src="" integrity="sha384-eP2mZH+CLyffr1fGYsgMUWJFzVwB9mkUplpx9Y2Y3egTeRlmzD9suNR+56UHKr7v" crossorigin="anonymous"></script>


Like most people who make use of the web, you probably use some free services like Facebook, Twitter, Google Chrome, Outlook, Gmail (the list goes on... basically we're talking about a product or service provided by an oversized tech power that demands your personal data in exchange for whatever they're peddling). Free services appear great on the surface but you are essentially selling your soul to these data tyrants so they can sell on your personal details to the lowest bidder. As the inventor of the web Tim Berners-Lee (TBL) states:

the web has evolved into an engine of inequity and division; swayed by powerful forces who use it for their own agendas

It's 2018 and we find ourselves in this dire situation, largely due to greed. It's toxic. Thankfully TBL has been working on a solution, called Solid, that aims to give web users more control over how their data is used and abused:

Solid changes the current model where users have to hand over personal data to digital giants in exchange for perceived value. As we’ve all discovered, this hasn’t been in our best interests. Solid is how we evolve the web in order to restore balance — by giving every one of us complete control over data, personal or not, in a revolutionary way

The main idea behind Solid is:

It gives every user a choice about where data is stored, which specific people and groups can access select elements, and which apps you use. It allows you, your family and colleagues, to link and share data with anyone. It allows people to look at the same data with different apps at the same time.

So while you may still need to disclose a certain level of personal information to use the services of Facebook for example, at least you will be in control of your own data, not Facebook. You set up a profile (known as a POD) on the Solid platform and then choose what info you want to share. I like it! And like TBL I'm looking forward to welcoming in the next era of the web.

PayPal are planning to introduce a new In-Context Checkout process that is aimed at making online payments quicker for the customer. Instead of sending customers to the PayPal website to complete a transaction, payments will be taken on the merchant's website in a modal-style box.

The five types of ecommerce customer

In Designing for 5 Types of E-Commerce Shoppers, research from the Nielsen Norman Group shows that shoppers can be categorised in one of five ways:

  1. Product focused - they know what they want and want to get it quick
  2. Browsers - they will spend a lot of time on the site, returning often
  3. Researchers - they like detailed product descriptions, excellent support and clear navigation
  4. Bargain hunters - they'll be in the sale section, and finding out about coupons or discount codes
  5. One-time shoppers - mostly folk with gift vouchers; they'll be checking out how to use their voucher

It seems clear to me that when it comes improving sales and overall customer satisfaction, the key to using this research is understanding how to recognise each customer type and present content appropriate to that type.


  1. accessibility
  2. social networking
  3. security
  4. software
  5. usability
  6. copywriting
  7. browsers
  8. email
  9. technical
  10. marketing
  11. seo
  12. ecommerce
  13. news
  14. css
  15. law
  16. help
  17. design
  18. business
  19. blog
  20. analytics
  21. mobile
  22. spam
  23. hardware
  24. cms
  25. domains
  26. fun
  27. brand
  28. misc
  29. advertising
  30. social media
  31. typography
  32. blogging
  33. podcast
  34. html
  35. privacy
  36. rss
  37. clients
  38. services

©Doepud 2006–2021. All rights reserved.