Email is incredibly convenient, but it was never designed for high-level security. Sending sensitive documents as standard attachments is the digital equivalent of sending a postcard—it can be intercepted at multiple points along its journey.
To protect your identity and finances, you should never email these seven documents without a password or encryption:
1. Tax Returns (1040s, W-2s)
Your tax documents contain your Social Security Number, home address, and income details—the ultimate “starter pack” for identity thieves.
2. Copies of Your Passport or ID
A scanned copy of your driver’s license or passport can be used to open fraudulent bank accounts or bypass security checks.
3. Bank and Credit Card Statements
Even a partial account number combined with your transaction history can give hackers enough information to successfully impersonate you during “social engineering” attacks.
4. Medical Records
Your health information is protected by law (HIPAA) for a reason. If these files are leaked, they can be used for insurance fraud or even blackmail.
5. Real Estate and Legal Contracts
Closing disclosures and signed contracts often include your signature and wire transfer instructions—prime targets for wire fraud.
6. Scanned Checks or Voided Checks
Your routing and account numbers are printed right on the bottom. Sharing these unencrypted is like handing over a blank check.
7. Passwords or “Secret Questions”
Never email a list of passwords to yourself or others. If your email is ever compromised, every account on that list is gone.