jeffv via plug on 4 Mar 2021 06:27:48 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Chime

Great point. Banks have all sorts of regulatory hoops, and be certain they want to know you. One thing is they like to see how much you're depositing and how frequently. Because if you have money, you must be laundering and not paying taxes to yer Uncle Sam. They are forced to report transactions of $10k or greater, via the amusingly-named Know Your Neighbor Act.

On 3/4/21 8:56 AM, Thomas Delrue via plug wrote:
(I am not a lawyer, do not take legal advice from me.)

This explains much more... While I think it's shortsighted on Chime's
end to say the least, it's probably the lawyer-types that told them to
implement this.

Chime's a bank and thus falls under certain requirements of reporting
and surveillance of its customers. One of those is the ability to
provide a strong link to a real-world identity to be able to (among
things) trace down money laundering or "aiding and abetting terrorism in
material ways".
Since ProtonMail is a provider that enables you to sign up without
providing *any* personal information (*), this would prevent chime from
having another link to you as a real person in the real world.
ProtonMail also makes it so that any organ of the USG will have a hard
time to pry information from them (I think they ware Swiss-based for
that specific reason - but I'm not 100% certain about that)
I think that with that in the back of their mind, they could justifiably
classify ProtonMail as an anonymous e-mail provider for their reading of
their requirements.

Chances are, they have some deny-list of providers of these mail
services, such as ProtonMail, mailinator, and what else have you.

Now, could you go ahead and set up your own 'anonymous' e-mail provider?
Sure, but remember that you are a US entity and are subject to the US
PATRIOT act (and all other
'you-have-nothing-to-fear-if-you-have-nothing-to-hide'-laws) so good
luck with that. You may be forced, hard-handedly or not, to keep (very)
detailed records of who uses your anonymous e-mail service and what make sure you consult a lawyer before you attempt to do so in
order to set accurate, reasonable, and correct expectations towards the
users of your future system. This also applies to you if you are a US
entity, but host the service (or even the controlling entity of the
service) itself outside of the US

On the other hand, this does tell you something about the
ability/requirement/eagerness of other mail providers regarding coughing
up who the 'real world person behind account X is', doesn't it?

(*) If you get prompted for "gimme a phone number" when signing up for a
ProtonMail account, just keep hitting Refresh until it goes "fine, how
about you solve this captcha then to prove you're human".

On 2/28/21 14:53, Joe Rosato via plug wrote:
Got this error and called them.
They then said they do not accept "private" email addresses.
You will note here it says "anonymous" email provider- which is wrong.
Protonmail is not an anonymous email provider. It is a private email


On Sun, Feb 28, 2021 at 2:46 PM LeRoy Cressy via plug
< <>> wrote:

     On 2/28/21 1:53 PM, Joe Rosato via plug wrote:
     Recently purchased a private email address to increase my
     security, and just found out <> does not
     allow "private" email addresses. I went with protonmail - used the
     free one for a while now when I wanted more privacy than my gmail

     I understand that "free" things on the internet translates to
     "you" are the product... but somehow this one blindsided me.

     Thought it would make for a good discussion.


     I personally use protonmail and also purchased from them the vpn
     package. As a paying customer you can download their protonmail
     bridge packagewhich enables you to use Mozilla Thunderbird to
     directly access their IMAP server.  Their VPN supports using OpenVPN
     which is available on all Linux distributions.

     As an Arch Linux user they include a PKGBUILD file for you to
     compile your own package.

     I have no problems with with their service.  They also responded
     very quickly when I noticed a bug in their PKGBUILD file.

Philadelphia Linux Users Group         --
Announcements -
General Discussion  --

Philadelphia Linux Users Group         --
Announcements -
General Discussion  --