Originally Posted by
anotherpax
From my understanding payment cards have to be stored securely and processed in a secure manner.
Handing over card details in their entirety where an agent could duplicate them does not constitute secure.
Please do correct me if I’m wrong
Under GDPR your consent is required for a company to *store* your credit card information. There is no breach of GDPR by simply providing them your credit card information for them to process a transaction. If you’re not comfortable providing the information then don’t do so.