QuoteThink of the paper trail you are making.I can understand the desire to have verified addresses as buyers often get it wrong, but this is not the way to go about it.For one thing instead of encyrpting the addresses they could be normalized and one-way hashed with a salt. This would allow you to confirm an address without know what the address is.Even then it would provide an advisary with unlimited guesses. There are only so many million addresses, an advisary with medium resource could guess them all.It is not a good plan to keep addresses in any way. Encryption is not enough, it should be encrypted anyways. You need to not be capable of getting the information in the event of a bust, ie deleted.A fair point, so what about replacing the paper copy for the vendor with a digital copy kept on an encrypted computer?