1) Install an SSL certificate and only allow access to the pages with https:// connections
2) Don't save the bank details or credit card details in your database at all if possible. You can process the transactions from the page without ever storing or displaying the sensitive data
3) Never email sensitive data