notimportant
United States of America#2Consumer Comment
Tue, April 24, 2012
If what you say is true, it may be illegal. No company can demand of you to provide such documentations via the Internet unless it's via a secure manner.
Credit card numbers are only to be provided via a PCI compliant systems on the Internet. PAYPAL and Google Checkout are two such systems. However, if you were told to send copies via email the credit card company can fine them and hold them accountable for failing to protect clients financial data.
All credit card transactions both in retail stores and online must be processed via a PCI compliant system. When a company fails to do so they may be heavily fined or lose their ability to accept credit cards depending on how the credit card company decides to handle the situation. The problem is that you voluntarily sent the information so are partly responsible.
I'm thinking you may have received a spoof email and thought it was actually namecheap exposing yourself to identity theft. Always check the emails header information for details on where it was truly sent from. It usually shows a domain name or ip address record that can be back tracked. The "from" section can be modified to appear to be from one place but actually be sent from another non related party.
Lastly, companies whom do ask for credit card verification usually request the last 4 digits only and maybe the security code on the front or back of the card. Contact your credit card company and tell them. Explain that you were charged for services that were not provided. They will probably get hit with a chargeback fee and you might get some of your money back.
Jut make sure you tell the truth because they will investigate.
Good Luck