Sharing passwords in emails is a very serious —and quite often illegal— malpractice that unfortunately happens extensively. Just pasting the username and password of an online service in an email for a technical person to help you troubleshoot an issue is so tempting because of its simplicity.
It is so simple, that there is no hint about how easy it is to forward credentials to someone you would not want to. This can also happen if a malicious person breaks into the account of the person you sent these credentials. If you are a security freak, you should also know then that the employees of your email provider with access to the database can also read these credentials as plain text. Creepy, right?
Could you imagine this happening with credentials of one of your clients for a web service? We would not want this to happen either.
The truth is that this malpractice, usually is not a fault of the user. There are two important reasons for it. First, there is considerable lack of education around the importance of security in information systems. Also, security and encryption used to be considerably hard.
Secure, end-to-end encrypted data sharing used to be accessible mostly to people familiar with GPG, RSA and cryptographic utilities in general.
It should not be that way and we believe we have come up with a remedy,that is accessible to everyone.
With Vaulty you do not need to be a security or cryptography expert to share or request end-to-end encrypted information securely. It is as easy as pasting a simple URL into your email. No account is required either.
Create a vault to store encrypted data.
Share the vault URL with the sensitive data owner.
The owner seals the vault with the encrypted data.