Prevent Hacking: Order should be linked with Payment/Transaction ID.
When customer pays for a product a transaction ID is generated by payment gateway. This is a confirmation that payment has been done. and can be cross verified. I suggest including Transaction ID with Order placed in the downloadable report.
Suppose, if there is any hacking/malfunction etc, then we can cross check. We can find which customer has actually paid *** amount & whether the transaction was completed or not. This feature will boost morals of those businesses who don't trust WooCommerce bcz of WordPress Vulnerabilities.