I'm working on a simple shopping cart / checkout, and I'm trying to
decide whether to keep the order info on the server, or somehow send an
encrypted email that contains the order info. Does anyone have any
experiences/recommendations for handling this type of deferred payment
processing in a secure way?