No, it's not. IMHO the problem is not the exact procedure, but the lack of option for the user to properly encrypt their data.