We are way off topic, but I have to say that is a very naive opinion. Apple has FULL control of their OS and can do whatever they like. And they update this OS with every major and minor release. That's why I keep repeating they can do this today or in the future. None of us know what policies or procedures they will implement in the future. And they do not have to tell us what they have done or not done. In fact they are extremely secretive and will not release the actual code involved for obvious reasons. Both competitive and legal.

Further you can read up on Apple Financial Identifier Requests. "Financial Identifier requests are based on financial identifiers such as credit/debit card or iTunes Gift Card. Financial Identifier requests generally seek information regarding suspected fraudulent transactions - for example, law enforcement investigations on behalf of customers in which a credit card was fraudulently used to purchase Apple products or services." These could be server side or client side but there isn't a whole lot of transparency about that.