Nealix

"Guru" is amazingly short-sighted, and the Evernote team is clearly NOT open-minded to hearing about secure software development process, since that takes more work. But, to answer your questions Guru; "What's the problem with using the standard security built into the desktop?" ?? Well, for one, my original post at the top answered this; While in a meeting, away for lunch, or out of the office, ANYONE can reboot the PC with a simple and widely available free tool from the internet (on a USB stick or CDROM) and gain instant access to your PC desktop. You claim that no other office software requires a password to offer an additional layer of protection!?? Have you never tried Outlook, Thunderbird Email, perhaps used password protected PDF files for sensitive customer or employee documents, used C.R.M. software that requires a login to protect the data? Clearly, the Evernote team is sticking their head in the sand, and will not hear ANYTHING the customers say about modern information security. This alone is reason enough to run very fast to a different product. One that has a software development team that has actually used recent office/information software, understands the 2016 era information security landscape, and wants their product to be seriously competitive. I will repeat, from my original post that started this thread; Without a separate app password to protect the Evernote data, I can boot ANY windows PC when the owner is away to lunch with a Boot DVD like Hiren, Ultimate BootCD, or many others, and get past the login password for windows TRIVIALLY, and then I would have access to ALL the notes on that person's EverNote account. I find this unacceptable and just plain amateur. It's no different from saying that you should not need a login for your Banking app, since "If locking the device doesn't protect the contents, another password won't help." Um, Sorry. Plain WRONG. I was seriously considering buying EverNote to use at my company for HR notes, Payroll notes, Confidential project notes, etc. All serious information that needs to be protected just like banking info. Are the people in control of EverNote really this naïve? In 2016? Really? Or are they just plain lazy?

This is short sighted. I can boot ANY windows PC when the owner is away to lunch with a Boot DVD like Hiren, Ultimate BootCD, and many more, get past the login password for windows TRIVIALLY, and then I would have access to ALL the notes on that person's EverNote account. I find this unacceptable and just plain amateur. It's no different from saying that you should not need a login for your Banking app, since "If locking the device doesn't protect the contents, another password won't help." Um, Sorry. Plain WRONG. I was seriously considering buying EverNote to use at my company for HR notes, Payroll notes, Confidential project notes, etc. All serious information that needs to be protected just like banking info. Are the people in control of EverNote really this naive? I guess I will have to keep looking for a similar product that takes the security of user data seriously. Neal