Despite the advantages, sending login credentials via email is not always the best solution. In fact, it might even be counterproductive. The primary goal of the email is to redirect the recipient to a page where they can reset their password. In that case, it is important to provide context about who or what requested the email and what information they should provide to the recipient. In this article, we’ll examine a few possible reasons why this practice is not a good idea.
The downside of sending login credentials through email
It isn’t a good idea to send login credentials through email. The security of passwords is not good, especially since most emails are sent in plain text. In addition, employees may not understand the consequences of accidentally revealing passwords, so it’s easy for them to use a friend’s or colleague’s email address to access your company’s data. Security best practices advise against sending passwords via email and instead recommend using encrypted instant messaging or phone calls instead.
The primary goal of email is to get people to a page to reset their password
The goal of a password recovery email is to provide a link that will redirect the user to a secure page to reset their password. Although this may seem like an obvious goal, many email messages serve several purposes. Airbnb, for example, provides information about stronger passwords. And if people need help with their account, they should know how to contact support. In this email, the company explains a few ways to do this.
A good password reset email has three goals. First, it needs to help users gain access to their account. This is usually accomplished through a link that enables the user to reset their password. The next step is to ensure the email is delivered on time. Emails sent from a domain with a poor reputation may be caught in spam traps, which is the last thing you need.
Second, the link to the password reset page should be easy to find and understand. Password reset links are long and contain a lot of information. You should give the link as a hyperlink so that the recipient can easily click it and start resetting their password. Also, make sure to include a date that the link expires so people know when to click on it.
Lastly, the link should provide instructions for contacting support. It should not direct to the account login page, which can reveal user privileges or accounts. A redirection to the account login page may be harmful, if it’s viewed as a scam. If this is the case, the email may be deleted from the server or the user’s account.
The goal of a password reset email should be clear, and the primary CTA should be as simple as possible. Emails containing a password reset link should be short and simple and contain a single CTA. A few lines of copyable text or a logo can help. If you’re concerned that the email may be a spam, don’t send it to your subscribers.
One of the most common customer touchpoints is a password reset. A good email campaign kicks off a customer’s journey and transactional emails help keep the relationship going. The biggest sporting goods retailer in the world, Decathlon, sends a warm password reset email to remind people to complete their shopping journey. This is a common email that’s easy to send out, but most people already expect the message to be generic and uncreative.
The importance of providing context around who (or what) initiated the request
If you’ve ever sent login credentials through email, you’ve probably noticed that it’s crucial to provide context about who or what initiated the request. Password resets don’t always go as planned, and users need a direct path to help. That’s why you should provide multiple options for support. Provide context about who or what initiated the request in your email, such as the recipient’s IP address, operating system, and browser.