I work for an online payment processing company, and our software stores the CC number in the database using the Blowfish encryption method. You could store the key needed to encrypt/decrypt the data in an initialization file and read it in from there.