To think companies should ask permission before storing your payment card details.

[dontrollover]

When I buy something from a website, I generally don't want my credit card details to be automatically stored in the company's database unless I give explicit permission. However, many websites have implicit permission written into their t&c's. Their only rationale seems to be that many people find card storage "convenient", but I still don't understand why it's in their interest to take control away from the customer.

If implicit permission is given in the t&c's, the only way to take back control is to visit the account page every time you shop, and manually delete the card details. This is something that I do because a) I don't trust them to keep my card details safe, b) I use most websites very occasionally so don't appreciate the "convenience" of auto-storage and c) it's my data not theirs so I want control over it.

Am I alone in this or does it bug you too?

doesn't bother me at all - sorry!

Doesn't bother me either, in fact I like it as it means I don't have to root around in my handbag trying to find my card and then enter all the numbers again.

I didn't know they could do this. Seems contra to GDPR. I thought they had to have your explicit consent to store any of your data and hidden in Ts and Cs doesn't sound explicit. God knows where my card details have been stored then. I'd def prefer they didn't.

Hilary, you may like the convenience, but I'm not saying that should be taken away, only that there should be a checkbox confirming whether you want the card to be stored or not.

Sleepinglemon, Amazon is one example of a company that stores your card without asking - permission is given via their T&Cs. Other companies seem to be going in the same direction.