I have a client who has concerns about users email addresses stored in site database,
My options appear to be.
- get user to create a new email address to “disguise” their identity, moves the identifiable email address to somewhere else, no longer my problem
easy for me, but effort for user
- remove requirement for user to have an email address,
easy, a few lines of code does that but gives communication problems,password resets etc.
- create and use domain related email address e.g. [email protected],
lots of hassle with this option client has to add email to their client etc.
- create forwarder on server
also hassle and user email is still stored on server
- ? other options
Is it possible to encrypt user email in database, as the password is, and for it still to be usable by the site