You should never store credit card info from your customers in your database, unless you have gone through the pci compliance with your database. If you do not have this compliance, it is unlawful to store credit card information in your database. Even if it weren't, its advised that you shouldn't do this.