Sorry for posting so fast but i faced this just recently. I had this experience with greengeeks.com they saved my full credit card details and are not removing it. The problem with this is that they have saved all the info, many other companies do not save CVV as a preventive measure if something got hacked. This ensures that auto payment will need me to enter CVV manually. I read somewhere that companies can save it but not all the info, even if they can save everything, i think they have to remove it if i request it.