No worries, thanks for that.

I have bought a book or two, and noticed that the site remembers both my CC details (this is alright) and also my 3 digit CVV. Isn't there a law against storing both for the purpose of future purchases?

I'd feel a little more comfortable if I was asked to enter the CVV every time. This is not inconvenient for the user as far as I can see.

We do not store your CVV, actually. We just don't use it. Interesting that this leads one to an uncomfortable conclusion -- thanks for the feedback.

No worries at all, I was trying not to swinge accusations at your company :)

I don't use my CC that much online, but I can't remember the last time (if ever) that I wasn't asked for a CVV on a future purchase after saving my details. Amazon still requires it for transactions even though my details are saved.

It makes me a bit more uncomfortable, because it removes that extra security layer between someone breaking into my account, and someone buying something. In another situation they would have to have my account details and my CVV (which may in fact, not be that hard to obtain, but it's a little more peace of mind).

Just some food for thought. I do like your site!

Amazon certainly doesn't require it for 1-click purchases, and I don't think they require it for shopping cart purchases either if your CC is saved.

Typically sites that save the CC do not save the CVV, but they only require it on the first purchase.