Data breaches happen every few months. Social Security numbers are one of the most common things stolen. Unless it is specifically required by law companies need to find other identifiers. My college had its own ID number system, why can’t the insurance companies do that? I don’t want some a-hole racking up bills that are going to be sent to me, just because a lazy programmer can’t be bothered to come up with their own way of numbering accounts.
So are you proposing a federal ID card, then?
Or are you just proposing that I have to provide physical documentation of identity and citizenship independently to every single business or agency I might have a need to transact business with?
Insurance companies DO use their own numbering systems to identify you. The issue isn’t laziness, but how do you tie all of the different numbers from all of the different companies together and tie them to you? Unless you are proposing some other centrally issued identification number how does it tie to you from company to company, from government agency (local, state, federal) to agency? And if you do issue a standardized number, well, you are back to the same issue.
Yea, I think the problem is more some companies treating SS as some sort of secret password rather than just as a unique identifier. It’s extremely useful as the latter (and if it didn’t exist, something else would probably be used for the same purpose), but because its used so frequently for that, its kinda dumb to expect it to be secure.
Right, if someone steals my SSN and uses that to get a credit card in my name, the problem isn’t the SSN. The problem is that the credit card company considers the SSN enough to give the person a card.
Do they still issue live credit cards with nothing more than a SSN? That’s only one piece of info I generally have to provide (though if I recall my last activation I had to use the phone associated with my account and SSN to activate, which is pretty stupid). I agree that they should have more security than that today.
The most enraging thing is when I’m on the phone with some company, and to identify myself they ask me to give them the last 4 digits of my SSN as if it was some sort of secret information that could only be known by me.
Your SSN is no more secret than your address or phone number. It is a unique identifier, and as such can’t be secret.
You don’t tie them together. That way hackers can only take one account instead of using the information to mess up anything else.
Alright, so when you open a new account with a company you’ve never done business with before, how do you prove to them that you are you?
In Britain we have a National Insurance Number, but it’s solely used for work, tax, health, and benefits: viz: government.
I would be very suspicious if any bank, business or person wanted to know it.
Obviously we’ve seen off attempts to force ID cards * or numbers, so yes we prove our identity to non-government people though other means. A credit or debit card or an old utility bill ( which we might have nicked ) usually does the trick.
- I can’t remember the last time anyone wanted to see ID. So the last few times they tried to introduce it were basically an excuse for a massive financial boondoggle for the agencies who would have profited from running it.
That does not seems to stop some businesses from opening accounts with stolen identities. Perhaps there is a need to weaken the power of the SSN, such that starting business transactions or opening accounts requires a lot more information.
Even with that, the credit reporting agencies are probably most in control over the damage that could be caused by identify theft. What can THEY do to ease the burden on identify theft victims?
Most of the times that I’ve applied for credit online, the site has generated a multiple-choice quiz asking me to correctly identify street addresses I’ve lived at, banks I’ve had accounts with, etc. One assumes it would be much more difficult for an aspiring identity thief to know what street I lived on in the '90s than it would be for them to simply glean my SSN.
Any company that relies on knowing an SSN alone as the basis for opening a line of credit is just being negligent, IMO.
However, so many things NEED to be tied together. For example, anything affecting your taxes (which, these days, can include your insurance premiums) has to be able to be tied to your IRS account. The IRS now uses your social security number, but if they used something else, what would change?
I concur. Perhaps it should also be criminal. I am not sure if there are laws any place around this. I am sure it would be fought by said companies on the basis of making it harder to do business with legitimate customers.
Why should I have to? I open an account with them, they give me a unique number, I use that number to conduct business with them for the duration of our relationship. What I call myself is irrelevant.
Let’s say I go to Well Fargo and open an account with my name, DrCube. I take out a big loan, and dont bother to pay it back. Now the bank will never do business with DrCube again. They’ll also probably tell other banks to steer clear of DrCube.
“Oh, but that was not me!”, you say. Well, what other information would you share to prove you are you?
You don’t think the business has any need to know who they’re doing business with?
How do they know the correct answers to these questions ?
And I couldn’t tell you most of the addresses I’ve lived, anyway.
Depends on whether you are paying cash or not.
By looking at your credit report.
But you can probably recognize which addresses look familiar and which ones don’t.
Much business activity that can be transacted in cash is still linked to other records. For example, you may be able to pay your auto insurance premium in cash, but they still want to check your credit score and report their experience to the various claims clearinghouses. (Same thing applies to apartment rental, BTW.)
Pretty much any kind of financial transaction (banking, stocks and bonds, and so forth) has the potential for tax reporting obligations, while with medical services they want to connect to insurance records and to keep consistent track of who received which services over a long period of time. (Are you the same person who had an appendectomy last year? or the same as filled a prescription for oxycodone last month?
On the other hand, if you just want to go to the auto parts store and buy some motor oil and windshield wipers, they’re not going to keep track of cash customers, and don’t care about your SSN. If they do need or want to keep track of you (e.g., for warranty purposes), they can use a phone number or some other identifier because the parts house doesn’t link to other businesses, and no SSN is necessary or requested.
I’m looking at my Social Security card, issued in 1948. It very clearly says:
“Not to be used for identification.”