[semerda]

Where they aren’t using APIs and instead the scrapers, does that mean they have your banking login credentials? Be curious to hear how they get around MFA.

[dayjah]

My experience using plaid with Schwab, on which I have MFA, is that you need to add an MFA code to your password when connecting the two. It works for some duration (a few days?) and then loses sync and you have to re-enter the password+MFA combo.

[bobbylarrybobby]

Do you literally concatenate the two? I've been wondering how to get plaid to work with my accounts that have MFA.

[ceejayoz]

Nah, Plaid's UI handles it natively. If it's required, Plaid will prompt you during the connection process with the same steps and any questions you'd encounter doing it directly on Schwab's website - "do you want a text or call" and then "enter the code" steps.

[propogandist]

Yes, they also can monitor and scan your financial transactions. Accepting their T&C and Privacy Policy gives them too much power, consumers are freely giving away access to their financial information for convenience.

[oh_sigh]

So what? Convenience is nice. And I'm willing to pay for convenience when the other options are far less convenient.

[WrtCdEvrydy]

> Accepting their T&C and Privacy Policy gives them too much power, consumers are freely giving away access to their <VERB> information for <THING>

[lambda_obrien]

When i used Mint at first, they'd just ask you to go to the page with the caphcha or whatever and go through it when you'd update your accounts with the auth scraper method. This was like maybe a decade ago? You could do a similar thing with mfa in realtime.

[Papirola]

they do for CIBC. it's a problem when you change your password and they keep trying to login with your old credentials - your account gets locked.