Product owner - do you not think about security??? After an account is closed and after the last bill has been PAID, you should delete/remove users cc information as well.
This is a huge security risk! For your company and your user!
Also, users should not be required to remember to call/email support to have the sensitive card information remove.
In additional, what's up with the 1 cc rule per account? Is it to reduce cc fraud? If it is, then you missed a bigger chunk as stated above. I only discovered this when I tried to switch my cc from my spouse's inactive account. You should allow a cc to move to another 'ACTIVE' account.
AND, is this is for users that want to save money? Your target audience and market segments? Why would they have multiple CCs per household???
A product owner executive with security background