Whether you’re applying for a mortgage, booking international travel, or verifying your identity for a new job, you’ll eventually be asked for a copy of your passport or government ID. Usually, the request comes with a simple instruction: “Just email it over.”
But is it actually safe? The short answer is no. #### Why Email is Like a Digital Postcard Standard email is not a secure vault; it’s more like a postcard. As it travels across the internet, it passes through various servers and networks. If any of those points are compromised, your unencrypted ID is sitting there in plain text for anyone to see.
Even worse, once that email is sent, it lives in your “Sent” folder and the recipient’s “Inbox” indefinitely. If either account is ever hacked—even years from now—your identity is served on a silver platter.
The Risks of an Exposed ID
- Identity Theft: A passport contains your full name, birth date, and document number—everything a thief needs to open accounts in your name.
- Synthetic Fraud: Scammers combine your real ID data with fake info to create entirely new identities.
- Permanent Exposure: Unlike a credit card, you can’t easily “cancel” your identity once the data is leaked.
How to Send an ID Securely
If you must send a copy of your ID, follow these safety steps:
- Never Use Attachments: Avoid the paperclip icon. Instead, use a secure link.
- Use Client-Side Encryption: Use a tool that scrambles the file on your device before it uploads.
- Set an Expiration Date: Ensure the link only works for 24 hours. There is no reason for your ID to be accessible forever.
- Self-Destructing Password: Send the password to the file using a Secret Note Generator.