Good point about a signature not hiding the data. I got my terminology mixed up. I thought it was encoding it in a way so that only the payment processor could see.

But that's not necessarily the case either, as somebody else brought up the fact that identifiers ARE in fact passed to the merchant.