Register now or log in to join your professional community.
Encryption is the key, a good encryption algorithm between the client and the server will help you.
Run your website is secure mode HTTPS, and ensure to encrypt all your session parameters.
Google CSRF, Cross site scripting and SQL ingection for most known issues and solutions to prevent your users and site from being vunlernable to those topics.