I made an website which i require of the user to enter their credit card details for virtual money transfer inside the website only. I only take the first two numbers of the card in order to detect the Card Type and i take last four because of the UI design.
Is there any chance i can get in trouble with this? If so, is there any recommendations to escape those?
P.S: I know is off-topic but i would be glad to find this out.