I am not impressed with the customer care of the processes for dealing with GDPR request, in fact it’s appalling, the business inability to understand the time frames required by law, or the right procedure.
I request data from monzo which the initially where going to provide try and provide out of the time, they had to be prompted into doing so
The compliance of which result in someone form customer care providing a link to an encrypted zip file
Which would be fine in most case in the file has been removed after say 24 hours or after confirming the data had been received or if the password wasn’t to unbelievably crackable that it probably wouldn’t even take you 5 second if you where familiar with password generator.
What’s more right now is it’s been over 6 months and the link is still up. Even though I have asked them to take it down.
They’re not even trying mitigate basic security issues, the old guard may be slow and unwielding frustrating.
But at least even they have the common sense when it comes to account security, monzo you really need to sort this stuff out.
It’s basic stuff , your guy shouldn’t of produced a link to the data this stuff should not be open to the public it’s unsafe and just bad practice.
P.s please take now the bloody link it shouldn’t still be up ! It’s a basic request