We want to develop a JavaScript application (with Angular) which will communicate with various other systems via API calls. For example, a checkout page where all entered information should be sent to another application via API. This contains very sensitive data (like product details or credit card information) or in other cases, some small files to download.
From my knowledge, everything which is being stored inside a browser is not secure and can be exploited/viewed or manipulated.
Is this a common approach for our requirement and is it possible to develop it securely?
