I'm exploring the option of using a webapp to submit credit card data to a third party for authorization. We will save the confirmation code if the authorization is successful but will not save any of the credit card data. Is anyone using this method or familiar with the securities that would be involved?