Changing account information

Why changing your email is such a pain and why we need security standards

📅 21 Sep 2021

If you’re reading this you’ve most likely followed my progress on Fosstodon, a Masstodon instance for everything FOSS. On there, I have posted several times over the past few months about funny and sometimes annoying things I’ve came across while trying to move away from gmail. With a change in email address comes having to update, for me, numerous accounts (around 100) because my online presence is way too big.

Put simply, it is often no small task to change account information. While some sites make it very simple, sometimes scarily so, others make it nearly impossible to change the email address linked to your profile. And yet others, you can’t change the email at all. Or, maybe you can, but customer service never got back to me. Here are the top three problems I ran into.

For me, this was an issue. I was trying very hard to keep google from knowing my final personal email address. While there are a couple of ways to accomplish this, I chose to use an intermediate protonmail address that I would change to once, delete my gmail address from all my profiles, and change it again. Unfortunately, I ultimately failed, because it turns out that some sites continue to send email to your FIRST REGISTERED EMAIL, even after you switch it multiple times, including a cc to your new email address. I honestly can’t think of a reason to do this. And mind you, this never happened with a bank account or an account with a similar level of security, but rather just some stupid site I had subscribed to. Regardless, I see the security purpose of this. In fact, I would prefer if a notification was sent to my old and new email address. But once I change it again, I didn’t expect this behavior. Strange.

2: Must visit in-person to change account information

This is not a joke. One of the last accounts I changed literally sent me an email stating account information could only be changed in-person. What?! I’ll just go ahead and reveal that this was a hotel loyalty program. I was honestly baffled. I had no idea what to do with this, so I just sent a nasty email to customer service and then deleted my account.

3: No additional security measures to change email address

This might be a little paranoid on my part, but I’m not sure I like that this happened more than once. I was able to successfully change my account information on several different accounts without any email or text notice or requirement to enter my password again.

Final thoughts

I have lots of other fun stories from what has taken around a year to complete but I won’t go into all of them. Note: this doesn’t actually take a year to accomplish but I set a goal of changing a few accounts a week. I didn’t want to sit at my computer for 12 hours and just knock them all out at once.

But the point of this is to show that I am a little alarmed that there is not some sort of standard. First, the number of accounts I had serious trouble changing (not because of hoops to jump through, but because of glitches or requirements to reach out to customer service) was way too high. I wish I could say all of these were dumb little subscription accounts and email lists but no, there were banks, ecommerce sites, and airlines on this list as well. This is not at all comforting to me.

Why is there no standard?

I’ll let you answer that. I’m not smart enough.

Day 62: #100DaysToOffload

💬 Looking for comments?

I don't have comments on this site because I don't feel like managing them.

Instead of leaving a comment, feel free to ✉️ contact me instead.