Incredible to think about that we got it right the first time (with email) and still had to spend the last 20 years complaining about centralized social networks.
Incredible to think about that we got it right the first time (with email) and still had to spend the last 20 years complaining about centralized social networks.
I mean I want this as part of the system. I actually want my bank statement sent via email without sensitive information in it. I mean I really. really. wish we had what you do but im not keen on digital documentation being an email that says log onto the site. Its like getting a postcard that says hoof it over to the office. Since email is no less secure than snail mail I see no issue with statements going out by email if its just not going to be done properly. I mean I give my accounts nicknames. I don’t need the account numbers on the statements or anything else crazy like my ssn.
I would disagree with that. The attack surface on snail mail is much, much smaller (only whoever can get in physical contact with my mail) and any attack scales incredibly badly. It is also often hard to read snail mail without making it obvious that it has been tampered with (i.e. opening the envelope).
Meanwhile the attack surface of email is huge (basically the entire internet), any attack can scale wildly and it is impossible to tell if anyone else read an email.
By and large, physical stuff is much more secure than digital stuff, just less convenient.
Yeah I get that but it does not make snail mail any more secure. It should be done right but when they are not going to do it right anyway and snail mail is an option. I would prefer to be allowed to take the option taht is at least usable. As it stands now in the US its just legal to not provide you clients with statements because that is what it effectively does.