I’ve been attempting to buy an Ebook reader from WHSmith over the past couple of days… with “attempting” being the operative word.

The WHSmith website sensibly allows you to enter a delivery and billing address for your goods, and so I opted to have the reader sent here to PC Pro Towers.  The website took my order, the confirmation email duly arrived, and all was well and good.

Until a day after I placed the order, I received an email saying:

“Unfortunately we have been unable to obtain name and address verification from the card issuer for this transaction. As such I would appreciate your assistance by faxing to us a copy of your bank statement. (Please note that we do not need to see your current balance).”

Excuse me? You want me to fax a copy of my bank statement – with account numbers, sort codes and all manner of other personal details – so that it can lie about on a printout at WHSmith HQ? And this is your idea of security? 

Natrually, I picked up the phone to protest.  ”If you’re worried about the fax, sir, you can always attach it to an email,” the nice lady reassured me, as my jaw walloped into the desk. “And what about all those personal details being sent in an insecure email attachment?” I enquired.

“Oh, you can blank out the personal details. We just need to see your name and address.” 

“So, just so that I’ve got this straight – you want me to send you a  copy of a piece of paper with just my name and address on it to verify I am who I say I am?” 

“Yes, sir.”

Order. Cancelled.