I received an email today from my rep regarding my payment plan for the upcoming year. Included in this email were my Account Id and Password. I expressed concern about this to my ticket rep, and his response was that my information was totally safe, that I had nothing to worry about, and that they will continue emailing passwords several times a year. I'm sure most people would buy this explanation, but he didn't know that I write web applications for a living and know better.
Emailing passwords is considered an extremely insecure practice. Any developer worth his or her salt, knows better than to do this. This is the reason most websites send you a password reset link in an email when you use the "Forgot my password" feature instead of sending your actual password.
For those not technically inclined, an explanation of why this is insecure might be in order. Email is sent over the internet in plain text. This means that the text you read on the screen is exactly what gets sent from the originating server all the way to your inbox without any sort of encryption. If someone were to surreptitiously snoop on those servers, they would be able to read your email. In the case of the emails the Kings send out, anyone who snooped them would be able to see your account id and password, log in to your account, and steal all of the personal information you have listed in your profile. They could even change the email addressed linked to your account, and steal your account itself.
Ignorance of best security practice is one thing, but disregarding legitimate concerns about the security of the personal information we entrust to the Kings is something I find unacceptable.
I encourage anyone who values the privacy of their account information to email their rep and let them know that you find their practice of emailing passwords to be an unacceptable breech of the trust we explicitly grant them when we give them our information. If enough of us speak up, they just might update their systems and policies to take the security of our information more seriously.