I think it's a good idea.
But if possible you should set up an identical website without all the customer data, and try with that.
If you can't do a separate deployment, you should only do this with trusted people (sign a contract if they're not close family).