Comment on Nope

<- View Parent
NaibofTabr@infosec.pub ⁨3⁩ ⁨months⁩ ago

You’re right of course, the root issue is trust.

If you are a new product/service vendor for me, then there is no trust yet - there hasn’t been time for a trust relationship to develop. We don’t have a relationship yet, and certainly not enough of one for me to trust you with any of my financial information. By asking for that up front, you are demonstrating that you are not trustworthy. You are identifying yourself as the type of business that tries to collect excessive amounts of information about its clients for no justifiable reason. And even if your intentions are completely above-board in collecting that information, I also have no idea how the information you collect is secured, and since I haven’t evaluated the product yet I can’t determine whether the risk of sharing financial information with you is worthwhile. My risk-reward analysis is blank on the reward side, which means that I need you to lower my entry risk.

When you make this distinction of “high trust” and “low trust” people, you are actually misusing the term “trust”. Trust cannot exist without experience - it is something that develops over time through interaction. I cannot trust you if I have only just met you, it is impossible. I can be naive, and agree to what you ask for without suspicion, but naivety is not the same thing as trust. What you are calling “high trust” people would be more accurately termed “rubes” or “saps”.

On average, high trust people are just easier to manage, especially when you’re a small outfit. It’s better for everyone if low trust users bounce away because of the cc wall.

What you are saying here is that it’s convenient for you if people just give you what you ask for without asking too many questions or raising any objections, and you prefer customers who are generally lacking in awareness especially with regard to their own security. Of course that’s convenient for you, you don’t have to spend any time considering whether there’s something wrong with your approach to this.

If you are disrespecting my financial security up front, and you are doing that for the sake of your own convenience, that is a very bad place to start a relationship. You are damaging the potential for trust before we’ve even got started, because it’s “easier” for you.

source
Sort:hotnewtop