We're considering doing what other Websites do with payment processing by asking for a credit card number, expiration date and CVV. Is this safer for customers and/or advantageous for PCI credit card compliance requirements if we collect less data?