Comment by giancarlostoro

15 days ago

If your website will block me out because I used a privacy friendly email, I want nothing to do with your website.

Yes but not always applicable unfortunately… e.g. the other day I was in Italy, I needed to park on the publicly available parking which was paid to the municipality.

No other parking available anywhere near in 30 mins walking distance. (paid or free)

I had to download a 3rd party app that asked me to register. This app isn’t by the Italian government, it’s affiliated though.

So in that situation, I want nothing to do with your website or app, because I wouldn’t able to park.

  • Have exactly the same situation with parking in Italy. Having a private company operating all paid parking on an island is not very healthy.

    • Having a handful of companies that can contact you has created a land of monopoly hyperscalers.

      It's so hard to build anything big and durable because they've created these steep gradients.

      2 replies →

  • Can you not pay with cash or card anywhere? What if you don't have a "smart" phone? I would categorically refuse to park anywhere that requires running a proprietary app on my device. Fortunately, in the States at least, I have not encountered such a place yet.

    • In the UK, I believe parking companies need to have a way to pay without the app but it's usually so bloody inconvenient that it's about the same as requiring it.

    • Physical machines can be confusing too :)

      When I was in Italy last summer, I couldn't figure out how to pay with my card at the machine in a small town, where you'd park to walk into an ancient city on a hill*. I asked two Italian woman for help and even with being able to read the Italian + having paid with coins themselves, they struggled to help me understand the combination of steps required to pay with card.

    • In my city in Northern California our downtown uses an app for parking now. I don’t use it so it’s still an option, but you have to goto a kiosk, enter your license plate number, and pay with card. It’s made the downtown more of a ghost town (admittedly it was already dying) and the boomers with cash just don’t go. The younger 20somethings all complain “boomers are too stupid to use an app” and have no concern for privacy apparently. Welcome to the future I guess.

      5 replies →

    • You need to find a working parking metre which may or may not work, accept cards or give back change. Also most if not all of parking apps allow you to pay by the exact minute and extended your stay dynamically from the go, while with a paper ticket you need to go back to the car and get another one before it expires

    • I do wonder if the "illegal not to accept cash" laws in some states have been applied to this situation.

      Note that sometimes the risk is low, and changing your plate is cheaper if you do get a fine...

    • Park City, Utah - although there were meters that could accept card or cash available, none worked. App was the only functional way to pay. This was 3-4 years ago, not during ski season but getting close to it (October or November).

    • You can't, no. It's the same story in Sicily. You can only pay for parking using an app, if you don't have a smartphone you just can't park. Luckily the parking app they have is pretty nice, but the requirement is infuriating

  • Sometime ago I had to pay for parking to get access to a hiking trail (in US). The way to pay for parking was shady as hell. Just a random QR code sticker on the wall that said "pay here" that navigated to a payment portal that asked for your CC, address, license plate. I mentioned to my friend who was with me, "anyone could really just put any sort of QR code here and navigate you to a fake payment portal and steal your CC"

    But like you said, what are you supposed to do otherwise?

    • That's actually a common scam that happens, too. It's a constant problem in my city, and while I already have the app downloaded on my phone others do not and find themselves getting nasty bills in the mail months later.

  • I think in most countries the only way to challenge this kind of thing is to park illegally and then go to court and claim it was impossible for you to park legally. Which is a hard process, on purpose.

    • In the States, they tow your car to a yard and hold it ransom until you fork out a $1K or so (depends on the state/municipality), with accrued daily surcharges. And, good luck finding the yard. They also only take cash or debit so that you cannot run a chargeback later on. I'd rather just pay a $300 ticket, don't tow my car.

      2 replies →

  • you can pay at the parking meters directly, no need for a 3rd party app

    • Yes, but

      - the apps almost always allow you to remotely increase your stay - the apps almost always allow you to pay by the exact minute instead of by the quarter/half an hour

Unfortunately sometimes we are at some specific provider’s mercy for whatever reason like lack of appropriate alternatives.

  • COUGHredditCOUGH

    • I think Reddit falls under this category.

      > If your website will block me out because I used a privacy friendly email, I want nothing to do with your website.

      14 replies →

    • IDK I’ve appreciated Reddit killing off good features like old version, putting a time-lock banner on mobile while logged out, trying to block VPNs when logged out, etc.

      I want that company devalued and bought by Verizon or AOL to die a Yahoo death.

      What is insane to me is how few people realize their stock has a higher P/E than nVidia… and it isn’t because of some bullshit minor AI data deals. It’s a youth-forward narrative machine, and everyone knows it.

      5 replies →

It's precisely when I want "nothing to do with your website" that I want to use a private friendly email if I'm nonetheless forced to interact with it...

I ran into this with an NVMO mobile provider. They did not like my personal email domains (assorted .net and .org) so I nagged their customer support until they manually added it. Their marketing team happily emails my personal domains once added. Some day this will probably cause a problem but my goal is to eventually get rid of my cell phone either way.

I frequently buy a domain that I think is funny and use that to forward all my emails to my main email account. It's trivial to do from Cloudflare. Then after that 1 year is up, my domain goes away and so does all of the spam.

Completely agree - have you encountered this before? The Gmail plus sign alias trick has been widely known for a long time and, to my knowledge, still works well today. It would be easy enough for websites to either block + in gmail addresses or instead grab the true email.

  • Some sites that block "+" in email addresses are actually just doing it out of incompetence. My credit union, for example, will actually accept an address with a "+" in it, but nothing will work because some broken bit of web 1.0 plumbing along the way converted it to a space (it shows up that way on my profile page). I wouldn't be surprised to see "&nbsp" on my printed bank statements.

    • Oh yes, so many websites are incompetent like that.

      And of course after registering with foo+bar@example.com they will happily send invoices to bar@example.com

  • Gmail also have "googlemail.com" alias and you can split your username with dots since they dont count like "user@gmail.com" and "u.s.e.r@gmail.com" are the same thing,

    Nothing of it solves privacy though.

  • Spammers know to just cut out the +whatever. It's a simple regex to keep those from even getting into a database.

  • Guess what? There are some dumb website or applications complaining that the email address is invalid.

I used to run a hybrid mobile app + webapp company.

Private emails regularly lead to awful customer service interactions because people cannot tell us the email they used to register. Fastmail at least is off the beaten path enough that people probably can understand. Apple, especially using sign in with Apple, is horrid. And not just people unable to tell us the email; they then create multiple accounts; try to sign in on web and use their actual email and then have 2 accounts and flip shit that their stuff is gone; etc. Oh, and regularly blame us for their confusion.

  • It’s up to the app architect to make a way to make this work, and to stop using emails as anything other than a UUID type of token

    • So I guess the solution is just to begin to allow accounts to always register multiple emails? Although I guess the issue of multiple accounts is still going to exist if the users don't know the initial (private) email that they signed up with though unless there is a different unique ID that everyone will be able to remember.

      I'm curious (and not trolling by asking) what a solution might be since email has been used as a unique account identifier for so long it is hard for my brain to think of another option at the moment.

      6 replies →

ChatGPT doesn’t allow private relay and hasn’t allowed it since launch may be. So it’s not always possible to not use them, of course now there is no need to use ChatGPT and I have just stopped and moved on from it

Didn't really have a choice with openrouter. I ended up using "Hide My Email" which gave me an icloud.com, which will likely no longer work according to this article.

If your website needs an email address at all.. otherwise just use null@null.null, if it accepts and doesn't require a authentication code

[flagged]

  • > If you insist on giving me a fake email, your business is probably a liability I don't want anyway

    It's not a fake e-mail, it's a legitimate e-mail that you can send e-mail to and the user will receive, which has to be created by a paying iCloud user and not an anonymous rando off the internet.

    I'd be interested to know what downsides, if any, you see for a website to accept a private e-mail address like this. Do you have a legitimate complaint about these sorts of e-mails? Again, given that private relay isn't an 'anonymous e-mail service' (it's still tied to your iCloud account so spam, etc. shouldn't be any more of an issue) but merely an 'anonymous to the person you're giving the e-mail to' service.

    If your actual complaint is 'if you insist on giving me an e-mail that you can revoke unilaterally making me unable to contact you against your wishes, and which cannot be associated with other user data from other sources to build a profile of you, then you're not worth having as a customer' then that's a separate complaint - and one that means I want nothing to do with your website.

    • I'm curious what you think the difference is between "a paying iCloud user" and "an anonymous rando off the internet." How many Apple gift cards do you reckon get sent to fraudsters every day? Decades worth of iCloud+ surely.

      I'm running a business where I need to know who you are, because my platform can be used defraud other people. If you're trying to hide who you are from our very first interaction, that's a massive red flag.

      If you can trivially create hundreds of these emails, and fill in the rest of the required info with bought/stolen/generated PII, now I have a vector for mass fraud. Requiring you to use a recognized non-anonymized provider doesn't stop you, but it sure does slow you down. (It's not this simple of course, but all security works in layers)

      If these terms are not acceptable to you, then great! Don't use the website, there's no need to be salty because that's what you said you wanted. Isn't it?

      I don't mind either, because the number of legitimate users who are bothered by this restriction is infinitesimal compared to the number of fraudsters who would take advantage if it wasn't in place. It can be difficult to comprehend the scale of platform fraud unless you've worked in this area, many days fraudulent signups outnumber legitimate ones.

      14 replies →

  • As others have alluded to, I'm not doing this to be anonymous, I'm doing this because companies can't be trusted not to leak my email address. Every real business that knows my real identity (banks, payroll, government, retailers, etc.) gets its own alias.

    When an organization invariably leaks my email and I start receiving spam to it, I generate a new one, update my email on record, deactivate the old one, and the spam stops.

  • > fake email

    Its a real address that I can use to monitor your behavior, since businesses send so much damn spam.

    Been using them for 25 years, not gonna stop any time soon.

  • Seems like we have a meeting of the minds here. You don't want me as a customer and I don't want you as a vendor (or payment processor). Enjoy your spamming :)