I have a web form on which my customer enters his credit card details along with other info. I then send this data to my backend server. I save the non-sensitive information to my database. I DO NOT store the cc details but pass them over https to a 3rd side.
Do I expose my customers to any risks? Should I worry about PCI? What would be best practice to pass such details to a 3rd side?