Today is the last RSA Conference day in London. This morning, when I opened my room door, I was surprised to find an envelope lying on the ground:
It contained two pages: one with all the details of my bill and the second one was a form to fill:
First problem, the envelope was very easy to open and close without damage. It could be very easy for everyone to read all my details (full personal info, number of days spent at the hotel and other info like if I used pay-TV, the mini-bar or Internet!). Why they did not completely drop the envelope under the door for safety?
The form was provided to promote the “Express Check Out” service: Instead of loosing time at the reception desk, I was invited to fill the document and put it in a special letter-box located near the reception. If the initiative looked interesting (“time is money” after all), when you check the document, you see that very confidential data are mandatory like: your name, address, credit card number, expiration data etc…
The main problem resides at the reception: the “letter boxes” provided to receive your documents are of course locked but… the slot where papers are inserted are too large! It’s easy to grab papers (a women hand would perfectly fit). And as you can see on the second picture, the box was full of documents!
This is clearly not a safe way to handle credit card numbers! You know what? I checked out using the classic way…