Financial institutions have largely been able to use the “trust me” approach to security, only revealing what they “have to” reveal to their customers about the steps they are taking to ensure customer privacy and data security. Consumers will not stand for identity theft and watch as their bank allows money to be withdrawn from their account by someone who is not really who they say they are. A consumer’s bank is ultimately the one responsible for allowing any kind of deposit, withdrawal or transaction, and so the bank must be absolutely, positively, 100% sure I am who I say I am.”]

