http://gdncgijky3xvocpkq6xqk5uda4vsnvzuk7ke7jrvxnvyjwkq35iq.b32.i2p/posts/blog/security/296-the-dvla-is-routinely-sending-sensitive-details-via-email.html
They've obviously put some thought into it, given that they've redacted part of the account number, but don't seem to have followed that thought process through to it's logical conclusion. Email is not a secure medium Amazingly, this is still news to some, but email is not a secure transmission medium. Every relay between the sender and my mailbox can read (and copy) the contents of that email.