Zenimax steps over its bounds when it comes to asking information 2privet

Sugram22 · June 20

what the hell is this? I tried the elder scrolls online post to buy an expansion for the game, but since I don't have upanka, I asked my brother to do it, I'll pay, when he asked for ubank user ID, he said it's private information and he doesn't trust the place that asks for it, that he have always done things without it and don't trust places that ask for it, asking for it goes against our private information laws, how is this even allowed

zenimax should have serious discussion with SEB bank

Sugram22 · June 20

what if this data leaks? hes account gets cleaned so that's why he refuses, and i haven't even told him Beth has history with hard/heavy data leaks, i am sure they have view of that data as well, if i told him he would be more hell pend against it

i am sure u don't ask that from ppl in NA and maybe some other regions in EU

SilverBride · June 20

I am not sure what they are asking for in the payment box because I only read English.

Syldras · June 20

I don't understand Estonian well enough, but isn't it the same principle as with other "instant payment" services? Where you log into your online banking through the webshop of a seller (although the data most probably is not transmitted over the shop but directly exchanged with your bank)? I've never used it, but I've seen in quite often, so it's not uncommon.

ArchangelIsraphel · June 20

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

From what I gather through a search, "kasutajatunnus" means something along the lines of:

1. user ID, a unique identifier allocated to persons when they subscribe to or register with an Internet access service or Internet communications service.
2. user ID and telephone number allocated to any communication entering the public telephone network
3. At any time, each authorised representative shall have a unique username and a unique password.

Seems like it's asking for some kind of user ID associated with the bank account or payment method they're using.

i am sure u don't ask that from ppl in NA and maybe some other regions in EU

While we don't have the same payment methods you do, we do have to give out a considerable amount of information during the payment process. Name, address, phone number, and any kind of 3 digit security pin on our bank cards. So yeah, a data leak is pretty compromising to us as well.

We also have to log in and give information via paypal payment portals if we use it as well.

CameraBeardThePirate · June 20

That's not ZOS asking for payment information, it's whatever service they're using to process payments. ZOS isn't storing that information at all, and if they had a data leak, your payment information would likely be fine, as they're using a third party to process that information.

Now if that third party (Mastercard) had a leak, then you'd have a problem. Although if Mastercard has a data leak, there's probably loads of people that would have problems.

NA players have the exact same payment process, just with a different payment system/company to handle the process.

Onomog · June 20

What we give out here in NA shouldn't be used as a basis for comparison, given the much more stringent data privacy laws in the EU.

The OP may have a point, but I'm not versed enough in EU data privacy laws to comment beyond what I've already stated.

SilverBride · June 20

ArchangelIsraphel wrote: »

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

From what I gather through a search, "kasutajatunnus" means something along the lines of:

1. user ID, a unique identifier allocated to persons when they subscribe to or register with an Internet access service or Internet communications service.
2. user ID and telephone number allocated to any communication entering the public telephone network
3. At any time, each authorised representative shall have a unique username and a unique password.

Seems like it's asking for some kind of user ID associated with the bank account or payment method they're using.

I do a lot of online shopping and have never had to give the User ID associated with my bank or credit card... just the card number and 3 digit code from the back. I would be very suspicious of this, too.

ArchangelIsraphel · June 20

SilverBride wrote: »

ArchangelIsraphel wrote: »

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

From what I gather through a search, "kasutajatunnus" means something along the lines of:

1. user ID, a unique identifier allocated to persons when they subscribe to or register with an Internet access service or Internet communications service.
2. user ID and telephone number allocated to any communication entering the public telephone network
3. At any time, each authorised representative shall have a unique username and a unique password.

Seems like it's asking for some kind of user ID associated with the bank account or payment method they're using.

I do a lot of online shopping and have never had to give the User ID associated with my bank or credit card... just the card number and 3 digit code from the back. I would be very suspicious of this, too.

It could just be the log in for the service they're using to process the payment, not necessarily the bank or credit card itself.

Sugram22 · June 20

Syldras wrote: »

I don't understand Estonian well enough, but isn't it the same principle as with other "instant payment" services? Where you log into your online banking through the webshop of a seller (although the data most probably is not transmitted over the shop but directly exchanged with your bank)? I've never used it, but I've seen in quite often, so it's not uncommon.

no idea but i get what u see on the picture

Sugram22 · June 20

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

its Estonian language, u can use translator

Danikat · June 20

It's nothing to do with Zenimax, it's a system Mastercard uses to verify payments: https://www.mastercard.co.uk/en-gb/personal/safety-security/strong-customer-authentication.html

If you contact your bank they should be able to tell you more about it.

I'm in the UK and use a Visa card and they have the same system - if it's the first time I've used my card on that site, or if it's a large payment, I get a pop-up box with extra steps to confirm it's me (the options I get are to have a code sent to my phone by text or use the card reader I use to log into online banking).

The company I'm buying from does not have any access to the information, it just goes to the bank (and even then I don't think their staff can see it, since the check is automated).

Sugram22 · June 20

ArchangelIsraphel wrote: »

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

From what I gather through a search, "kasutajatunnus" means something along the lines of:

1. user ID, a unique identifier allocated to persons when they subscribe to or register with an Internet access service or Internet communications service.
2. user ID and telephone number allocated to any communication entering the public telephone network
3. At any time, each authorised representative shall have a unique username and a unique password.

Seems like it's asking for some kind of user ID associated with the bank account or payment method they're using.

i am sure u don't ask that from ppl in NA and maybe some other regions in EU

While we don't have the same payment methods you do, we do have to give out a considerable amount of information during the payment process. Name, address, phone number, and any kind of 3 digit security pin on our bank cards. So yeah, a data leak is pretty compromising to us as well.

We also have to log in and give information via paypal payment portals if we use it as well.

its the final step after giving ur address and stuff and card data, to verify its card owner but what they asked it 2privet, almost like asking social security number

Danikat wrote: »

It's nothing to do with Zenimax, it's a system Mastercard uses to verify payments: https://www.mastercard.co.uk/en-gb/personal/safety-security/strong-customer-authentication.html

If you contact your bank they should be able to tell you more about it.

I'm in the UK and use a Visa card and they have the same system - if it's the first time I've used my card on that site, or if it's a large payment, I get a pop-up box with extra steps to confirm it's me (the options I get are to have a code sent to my phone by text or use the card reader I use to log into online banking).

The company I'm buying from does not have any access to the information, it just goes to the bank (and even then I don't think their staff can see it, since the check is automated).

no need to respond, just saying there are risks with using that data, so make sure to bookmark the sites ur using it cause some may make fake page, 1time there was fake bank page and on google search it was on top, u would think first on search results is legit but it wasn't and a lot of ppl got their accounts cleaned after they entered their login data, so its also a screw up from google for promoting that fake page, ofc its not the bank i use, we have multiple banks

Sugram22 · June 20

SilverBride wrote: »

ArchangelIsraphel wrote: »

SilverBride wrote: »

I am not sure what they are asking for in the payment box because I only read English.

From what I gather through a search, "kasutajatunnus" means something along the lines of:

1. user ID, a unique identifier allocated to persons when they subscribe to or register with an Internet access service or Internet communications service.
2. user ID and telephone number allocated to any communication entering the public telephone network
3. At any time, each authorised representative shall have a unique username and a unique password.

Seems like it's asking for some kind of user ID associated with the bank account or payment method they're using.

I do a lot of online shopping and have never had to give the User ID associated with my bank or credit card... just the card number and 3 digit code from the back. I would be very suspicious of this, too.

u and my brother think alike

he never had to deal with that stuff, few places that have been like that he doesn't do business with them period and goes to a places what doesn't ask that

RexyCat · June 20

Here is the legal part from ZoS about international data transfer:

https://www.zenimax.com/en/legal/privacy-policy#_EN_PP_11

Purposes of Use and Legal Basis on Processing Personal Information:

https://www.zenimax.com/en/legal/privacy-policy#_EN_PP_03

Northwold · June 21

Danikat wrote: »

It's nothing to do with Zenimax, it's a system Mastercard uses to verify payments: https://www.mastercard.co.uk/en-gb/personal/safety-security/strong-customer-authentication.html

If you contact your bank they should be able to tell you more about it.

I'm in the UK and use a Visa card and they have the same system - if it's the first time I've used my card on that site, or if it's a large payment, I get a pop-up box with extra steps to confirm it's me (the options I get are to have a code sent to my phone by text or use the card reader I use to log into online banking).

The company I'm buying from does not have any access to the information, it just goes to the bank (and even then I don't think their staff can see it, since the check is automated).

In the UK I have *never* been asked for a *user ID* though. The payment approval processes will send a confirmation to eg a telephone number you have provided separately to the bank based purely on your credit card nunber. No login details whatever are requested and I would never, ever provide such details since anyone asking for them is more likely to be a scam than a legitimate business.

Now, perhaps the OP's brother is using a system that requires login data but it really doesn't sound like it.

Nathrai · June 21

In Central Europe, Mastercard has been working with logins for years - because, you know ... handing out creditcard number and security code in plain text to a random vendor on the internet is like playing russian roulette with 5 bullets. I don't even want to imagine how many fraud cases they had before requiring additional security messures.

And this has nothing to do with ZOS, from what little one can tell from the screenshots, this is most probably a form provided by the bank.

Sugram22 · June 21

Northwold wrote: »

Danikat wrote: »

It's nothing to do with Zenimax, it's a system Mastercard uses to verify payments: https://www.mastercard.co.uk/en-gb/personal/safety-security/strong-customer-authentication.html

If you contact your bank they should be able to tell you more about it.

I'm in the UK and use a Visa card and they have the same system - if it's the first time I've used my card on that site, or if it's a large payment, I get a pop-up box with extra steps to confirm it's me (the options I get are to have a code sent to my phone by text or use the card reader I use to log into online banking).

The company I'm buying from does not have any access to the information, it just goes to the bank (and even then I don't think their staff can see it, since the check is automated).

In the UK I have *never* been asked for a *user ID* though. The payment approval processes will send a confirmation to eg a telephone number you have provided separately to the bank based purely on your credit card nunber. No login details whatever are requested and I would never, ever provide such details since anyone asking for them is more likely to be a scam than a legitimate business.

Now, perhaps the OP's brother is using a system that requires login data but it really doesn't sound like it.

it looks like what's on picture asks internet bank login data (internet bank is separate from bank but connected to it, its created to make payments and stuff so u don't half to go to bank), but brothers said he has never given that cause its sus, it made him think the hole page is a scam, he never deals with businesses that ask this data

2022 early January or February it didn't ask that stuff (i was able to use my master cart in SWTOR store) but later like June i wanted to buy something from ESO store and i got the thing on the picture, but sins i haven't even created internet bank account i cant fill it even if i wanted to

Sugram22 · June 21

Nathrai wrote: »

In Central Europe, Mastercard has been working with logins for years - because, you know ... handing out creditcard number and security code in plain text to a random vendor on the internet is like playing russian roulette with 5 bullets. I don't even want to imagine how many fraud cases they had before requiring additional security messures.

And this has nothing to do with ZOS, from what little one can tell from the screenshots, this is most probably a form provided by the bank.

yea seems its banks thing, but its usually hard to trust this things cause how many scammers are out there creating fake pages to log in to

like i said to one above:
there are risks with using that data, so make sure to bookmark the sites ur using it cause some may make fake page, 1time there was fake bank page and on google search it was on top, u would think first on search results is legit but it wasn't and a lot of ppl got their accounts cleaned after they entered their login data, so its also a screw up from google for promoting that fake page, ofc its not the bank i use, we have multiple bank

Nathrai · June 21

Sugram22 wrote: »

yea seems its banks thing, but its usually hard to trust this things cause how many scammers are out there creating fake pages to log in to

like i said to one above:
there are risks with using that data, so make sure to bookmark the sites ur using it cause some may make fake page, 1time there was fake bank page and on google search it was on top, u would think first on search results is legit but it wasn't and a lot of ppl got their accounts cleaned after they entered their login data, so its also a screw up from google for promoting that fake page, ofc its not the bank i use, we have multiple bank

Aye, sadly you have to be VERY careful with every step you take online. Unless it's a company I really, REALLY trust (you can count those on one hand, and all of them have a physical shop nearby), I never ever use a credit card online.

There's three payment services I somewhat, moderately trust (but still monitor closely), and any site not willing to provide payment through those simply doesn't get money.

Sugram22 · June 21

Nathrai wrote: »

Sugram22 wrote: »

yea seems its banks thing, but its usually hard to trust this things cause how many scammers are out there creating fake pages to log in to

like i said to one above:
there are risks with using that data, so make sure to bookmark the sites ur using it cause some may make fake page, 1time there was fake bank page and on google search it was on top, u would think first on search results is legit but it wasn't and a lot of ppl got their accounts cleaned after they entered their login data, so its also a screw up from google for promoting that fake page, ofc its not the bank i use, we have multiple bank

Aye, sadly you have to be VERY careful with every step you take online. Unless it's a company I really, REALLY trust (you can count those on one hand, and all of them have a physical shop nearby), I never ever use a credit card online.

There's three payment services I somewhat, moderately trust (but still monitor closely), and any site not willing to provide payment through those simply doesn't get money.

reason i have second master card with online payment option, but i cant use it ever sins that change and it started asking what is on the picture, cause i wont make internet bank account (its 2much for my brain to handle so high security stuff it has, i had that account in past but closed it from bank directly sins unable to log in, i have disability so i need old easy sys to do it with my card), reason i asked brother to do it with hes second card