Insecure And Flaky Banking System
So I opened an account with them and wanted to play with their system after transfer $100 in to it to see if I would really want to transfer all my savings in to their account for 1.92% annual yield. Here's what I thought about them
1. It is a security glitch if they are linking to your external accounts by taking your external account credentials. That should never be the case. This is just a quick work around for implementing something more robust. Being a computer software architect, I can vouch for this. I am sure they won't store your credentials but they do have access to your external accounts which is a BIG BIG NO NO NO. Keep in mind that if they system is compromised (easy to do I think), your external accounts will also get compromised. There are ways to work around it but, how many of you are tech savvy people who would want to spend time around working around their flaky security system.
2. Their iPhone app is pretty flimsy. I tried to transfer my $100 back to my external account from their savings account and I wouldn't let me. So I transferred the money to their checking account first and tried to transfer money to my external account from their checking account. The moment I would hit submit, it would reset "from account" selection field. I had to log out and log in multiple times to make it work.
3. I tried to link another account of mine and it would always throw errors. I called their customer care and they suggested to send them a screen shot for their engineers to take a look at. They were not able to see my tries to link to this external account in their system. Any decent bank would have an audit trail of literally anything and everything to your account. These guys are far away from such a thing.
Apart from the above, I found the following really weird:
1. You can't wire money from an external account in to varo accounts.
2. You can only deposit $1500 max per week. This was as per the phone rep I spoke with.
In lieu of above, I can say with authenticity that their systems are flaky and not at all secure. Even though everything is insured by FDIC, do you really have time to be on call with them so frequently?
Please check frustration shared by many other at this website: https://www.trustpilot.com/review/varomoney.com
Beware Severe Privacy Invasion
Varo allows only one method to link your Varo checking account to your checking or savings accounts at another bank for electronic transfers. Instead of using test deposits and verification thereof like other banks do, Varo requires that you give them your sign-in ID and password at the other banks website. This is especially dangerous because Varo does not even do the account verification itself. Instead it gives your ID and password to some third party named PLAID.
Furthermore, PLAID's disclosures admit that they will be able to view all your various accounts at your other bank including your credit cards. They will be able to view the details of every credit card purchase, every payment by check, and every electronic payment you have made as well as all personal data which your other bank has. Your records may indicate your medical conditions when they show what medical specialists you have paid. It is completely unnecessary for PLAID to have all your records in order to do the account verification. This is evidenced by PLAID's own disclosures which describe a much more limited amount of data collection for persons who reside in Europe.
Then you have to trust PLAID not to use all your records that they have collected for their profit or reveal it to yet other companies for them to use (if they really won't use your records, then why do they collect them?). PLAID is not a bank and therefore not subject to the extensive federal regulation and oversight that most US banks are. You have to just trust PLAID to protect all your records from hackers and from their own employees abusively using all this information from your banking and credit card transactions. All this by a company that hides from consumers as PLAID's website reveals no phone contact, no email address, and no physical address. The only way to contact them is in text on their website (even that is designated for commercial sales, not for consumers).
There is a way to avoid PLAID while still having an electronic link of your bank accounts. Set up the electronic link to your Varo account at your other bank and initiate all transfers in either direction between the 2 banks at your other bank's website.
UPDATE: New California law gives California residents new opt out rights regarding use of data collected by companies. Some companies are now offering those new opt outs to all Americans rather than just Californians. Other companies are offering those opt outs only to Californians, thus giving treating Californians better than other Americans. It seems that Varo is one of those companies that treats Californians better than other Americans.
Sorry, we do not have health information for Varo.