Dubious security on esign return documents
I'd love to get some feedback on what I assume is a case of bad admin.
I received an eSign email for a document from my tax preparer. Hit the link, filled it out and sent it. It went to my wife next and that's when I noticed something amiss. ANYONE could hit the link and see the half filled doc (ss#'s and lots of personal details.) I had her finish it and once it was complete the link was dead. My thought was 'great at info least that leak is dead, but I should probably say something to our tax preparer.'
Two minutes later we both received a confirmation email that the doc was "Signed and Filed!" In that email was a link to the completed document and an attached PDF of it, BOTH without any kind of password protection (meaning the link and the pdf could be opened anywhere.)
MY QUESTION: Am I missing something regarding the security or is this a mistake on their part? Is there a way to send eSign docs that don't have any kind of security authorization requirements? I consider myself moderately well informed on the tech front and feel I would have heard about something that didn't require the received to input some kind of authorization info.
Please reply! Your feedback is VERY much appreciated.
J
