Skip to navigation

PCPro-Computing in the Real World Printed from www.pcpro.co.uk

Register to receive our regular email newsletter at http://www.pcpro.co.uk/registration.

The newsletter contains links to our latest PC news, product reviews, features and how-to guides, plus special offers and competitions.

// Home / Blogs

Posted on October 15th, 2008 by Barry Collins

WHSmith’s strange idea of security

WHSmiths eBookI’ve been attempting to buy an Ebook reader from WHSmith over the past couple of days… with “attempting” being the operative word.

The WHSmith website sensibly allows you to enter a delivery and billing address for your goods, and so I opted to have the reader sent here to PC Pro Towers.  The website took my order, the confirmation email duly arrived, and all was well and good.

Until a day after I placed the order, I received an email saying:

“Unfortunately we have been unable to obtain name and address verification from the card issuer for this transaction. As such I would appreciate your assistance by faxing to us a copy of your bank statement. (Please note that we do not need to see your current balance).”

Excuse me? You want me to fax a copy of my bank statement – with account numbers, sort codes and all manner of other personal details – so that it can lie about on a printout at WHSmith HQ? And this is your idea of security? 

Natrually, I picked up the phone to protest.  ”If you’re worried about the fax, sir, you can always attach it to an email,” the nice lady reassured me, as my jaw walloped into the desk. “And what about all those personal details being sent in an insecure email attachment?” I enquired.

“Oh, you can blank out the personal details. We just need to see your name and address.” 

“So, just so that I’ve got this straight – you want me to send you a  copy of a piece of paper with just my name and address on it to verify I am who I say I am?” 

“Yes, sir.”

Order. Cancelled. 

Tags: , ,

Posted in: Newsdesk, Rant

Permalink | Trackback

Follow any responses to this entry through the RSS 2.0 feed.

Social Bookmark this article: What is this?

Add to: DiggDigg
Add to: Del.icio.usDelicious
Add to: RedditReddit
Add to: StumbleUponStumbleUpon
Add to: SlashdotSlashdot
Add to: GoogleGoogle
Add to: FacebbokFacebook

3 Responses to “ WHSmith’s strange idea of security ”

  1. Daniel Says:
    October 15th, 2008 at 3:19 pm

    :-o

    I wonder if WHSmith also provide secutiry consultancy services to government officials?

     
  2. james016 Says:
    October 15th, 2008 at 3:44 pm

    So they want your personal details but are happy for you to blank them out. Do they not count name and address as personal details.

     
  3. Nick Says:
    October 24th, 2008 at 3:38 pm

    I would imagine it’s for the letter head more than anything else.

    It’s a daft question then, but how else could they verify you are who you say you are ?

    I frequently ask for things to be delivered to work, but many companies refuse this – which I accept because at some level they’re not sending things out to an address where the card isn’t registered.

    It’s a thorny subject with arguments on both sides, but it is a daft concept of security, I admit.

     

Leave a Reply

* required fields

* Will not be published

Categories

Authors

Archives

advertisement

SEARCH
SIGN UP

Your email:

Your password:

remember me

Create an account

advertisement


Hitwise Top 10 Website 2008