Annoying extra security on credit card website


Capital One has recently introduced an additional layer of security on its website. Every 90 days, in addition to logging on with user name & password, the customer has to provide a once-only code which Cap 1 sends to their registered telephone. This pre-supposes that the customer actually has a telephone, which may not be the case, or of course they may be away from home with no mobile.

This seems completely unnecessary, and I am wondering if they are breaking any exclusion rules by requiring the customer to have a telephone in order to use their website?


Source link