Why do you publish users' email addresses? #64
Description
Question
Could you please remove all email addresses from your public website?
Further Information
The datasite identifiers listed on the syftbox website include users' email addresses.
Warning
You are basically publishing privacy sensitive information here.
These email addresses are also leaked via the syftbox client output.
-
Please remove the email addresses from the website and from the syftbox client output.
-
Please implement another kind of indentifier to be used instead of the email addresses and keep the users' email addresses private.
-
Until this has been accomplished, please add a very explicit warning in the documentation and at the client login prompt, explaining that the email address entered there will be published.
Screenshots
n/a
System Information
n/a
Additional Context
From the tutorial it is not at all clear that email addresses will be published:
[...]
The last step is a quick authentication step, where you'll be prompted for your email address:
Selected directory '...' Enter your email address: _The email address is your user ID, it's the unique identifier for your datasite in the SyftBox network. After that, you'll receive by email your temporary authentication token. Paste it after the message shown in your shell:
Please enter the token sent to ... . Also check your spam folder: _[...]