This is an anonymous question sent in by a member who does not want their name disclosed. Please be thoughtful with your responses, as these are usually tough questions to ask and answer.

url in email: somepage.html?someuuid=xxxxxxxxxxxxxxxxxxxxx

someuuid is directly associated with a user, and a credit card on file.

Click the link in the email, visit page with someuuid in url, click ORDER, and your card on file is charged, without authentication.

Share the email or the link with someuuid in url, and if someone clicks on it, it will place the order with the card on file, without authentication.

Marketing is arguing that there’s higher conversion, and a competitive edge by not making people authenticate, and is blocking authentication from being added…insists that it’s some genius feature. Yes, in 2017 these are the arguments.

Please comment on the a) legality b) PCI compliance implications c) privacy, and d) ethics of building and publishing an email ordering system in this way.

I need strong arguments. Marketing isn’t listening. Help.