Apologies if this has already been discussed but I couldn't immediately find anything on it.

I notice that although signup to 1899 uses the secure web protocol - (https at the start of the address line instead of http, and a padlock displayed at the bottom right of the window) access to account details is insecure, even though the word "secure" is (perhaps misleadingly) included in the address.

Worse, if you decide to change your payment method, the page where you enter your credit card details is also insecure.

This is odd, since the signup pages use the secure https protocol, so it's not that they don't have the facility to use the https protocol.

Does anyone have any expert knowledge on these security issues? Without knowing much about it, I have always just adopted the policy of never giving bank or credit card details on a web page that doesn't begin https and show the padlock at the bottom right. My inclination would be to avoid changing credit card details on this site. One option would be to close the existing subscription and sign up again with a new account, using the secure pages.

I'd be interested to hear any comments on whether I am being overly cautious (or not cautious enough as regards the insecure account pages!)