Encrypt only the credit card column, or better yet, encrypt it as a hash only. Don't store this stuff if you don't need to do it. If you do, then you ought to comply with PCI requirements of the credit card companies, not come up with something yourself.