DonorBox.org is a robust donation management platform designed to simplify and empower nonprofit fundraising through intuitive payment workflows and embedded campaigns.
Using Ruby on Rails for backend orchestration and JavaScript for dynamic interactivity, DonorBox enables nonprofits to collect one-time and recurring donations with ease. My contributions focused on optimizing the donor journey and ensuring secure, compliant payment handling.
I enhanced the donation flow to support features like one-click donations, saved payment methods, multiple recurring options, and embeddable form integration across external websites while maintaining strict PCI compliance and transactional integrity.
- Revamped the donor flow using Ruby on Rails, introducing streamlined recurring donation setups and one-click donation options for returning supporters to increase conversion and reduce friction.
- Integrated multiple payment gateways including Stripe and PayPal, enabling seamless processing for one-time and subscription-based donations, with unified backend reconciliation logic.
- Built embeddable donation forms (HTML/JS widgets) that nonprofit clients can place on their own websites, allowing them to accept donations while ensuring session continuity and secure data capture.
- Designed and implemented frontend logic using JavaScript for dynamic validation, real-time donation amount updating, form field adjustments, and smooth donor feedback during the process.
- Ensured PCI compliance by enforcing tokenization of payment data, SSL encryption on all submission endpoints, and secure rails controllers for transaction processing.
- Built secure backend routines for handling donation records, updating recurring gift schedules, and triggering confirmation emails, while maintaining audit logs and transaction integrity.
- Developed modular Rails controllers and services to manage donation workflows, including user authentication, card tokenization, subscription management, and donation scheduling.
- Created frontend JavaScript enhancements for validation (e.g. email, amount, recurring flags), interactive amount presets, and form auto-adjustments for one-click donor support.
- Ensured safe payment flow across Stripe and PayPal, managing webhook callbacks, fraud flag logic, and integration fallback strategies for reliability.
- Engineered the embeddable forms to be lightweight and flexible, dynamically injected via script tags to external sites, offering customizable styling and secure cross-origin isolation.
- Focused on transaction security: all sensitive data processed via Rails token storage or gateway APIs, with no direct card handling on the server, and full logging for compliance and traceability.
- Conducted performance testing and form behavior analysis under high-load donor traffic periods to ensure stable form rendering and backend reliability.