Originally Posted by
Lefly
QR can ask again for the same card on another booking.
Yep, QR would have a hard time justifying retention of your full payment card details to be able to match back on a previous transaction, unless the payment card information had been tokenised and the tokens matched.
But equally it's hard to understand how they can justify sending an image of your card and a statement via an insecure communication channel, cos that is definitely not in spirit of good PCI (payment card industry) practice. I have had airlines ask to see the payment card at check in before, and made that clear in the booking process, but never to start emailing copies of cards and other ID around.