>>>>I see, I would never use that as an "encryption" for myself.
>>>
>>>Why not?
>>
>>It is not secure enough for me. If you would bet on it, I could try cracking the encrypted text you sent (I would need the original result rather than copy&paste here).
>>There are standard and secure algorithms like AES.
>
>I respect what you are saying. But I see that we work for different customers/markets. For us, this is plenty secure.

If you are still targeting european markets, I'd follow Cetins hints.
Probably your app does not attract NSA, Russian, Chinese or Korean hackers, but if it is hacked and personal data decrypted you might face ugly court action. Less damage pay compared to US courts, but danger of a domino of courts in EU countries jumping on results of earlier judgement.

Something only masochists look forward to...