I’ve noticed you tend to always assume the worst before every trying to give the benefit of the doubt.
There are very legitimate reasons to not want to give your email to any random website that asks. They can be hacked, the instance might be a front for some data aggregator, etc. And if your response is “just use a masking service” or “just use a disposable email address”, then what is the point of validating the email address in the first place?
Admins add email verification because this is one extra layer of protection against automated bots, but this is far from a guarantee they are protected. It might help them to give some paper trail in case someone does something nasty on their servers, but the best they can do is take an (easy to create) email address and report to the authorities along with the IP address.
Compare with an instance that only accepts paying members:
- no bot or spammer will be interested in paying a few dollars per month to send messages
- if some spammer is stupid enough to sign up to the service and sends clear spam, then we point the ToS to them, kick them out and they will be left without any money
- we have a much stronger paper trail in case some user does something nasty.
reattach@lemmy.world 1 day ago
I think your approach is a good one to ensure real users, reduce spam, and for the admins to be compensated for the service they provide. However, is giving your credit card or bank transfer information to a website less risky or more privacy-focused (one of OP’s goals) than giving an email address?
rglullis@communick.news 1 day ago
You are not giving your payment information to the website. You’d be giving to a payment processor, which has to go through all the regulatory oversight. So, yes, I trust Stripe to handle my payment information more than I’d ever trust any random instance admin with my email.