Thanks for your contributions, OrbitLens, here is an overview of how sending to an email actually works on SendIt.
When you decide to send fund/asset to an email address, if your recipient email is a new email, after filling out the transaction form, you will be taken to a new page where you are asked to encrypt the transaction with a pin or a password, at this point a stellar keypair is generated, we then proceed to encrypt the secret key with the pin/password you entered(using AES), after this we send your transaction to this newly generated public key and a one-time confirmation email is send to the recipient email (please take note here anything related to the keypair is not send to the recipient, no sensitive information is send), when the recipient get and click on the email. He/she is taken to a page where they are prompt to enter the pin used for this transactions (This is password/pin you used to encrypt the transaction when sending). If this is the right user you will have to share the pin, if He/she is able to decrypt the secret key using the pin/password then they are taken to a new page where they are asked to change this pin/password, after this is done the encryption key is changed from the sender pin/password to the recipient pin/password, at this point the sender no longer has access to the secret key neither do anyone unless someone with the user's password.
- You encrypt secret key with a pin/ password and send Transaction
- A normal confirmation email is send to the recipient(Not containing any sensitive information)
- Recipient click's on the link and is prompt to enter pin
- if the recipient has the right encryption key, they are able to change encryption Key from the sender's key to their own giving them full control
WE DON'T SEND USERS SECRET KEY VIA EMAIL, WE ONLY SEND NORMAL EMAIL MESSAGE CONTAINING JUST A CONFIRMATION EMAIL, only the sender name is attached and in some cases, NONE is attached if the user don't have a name.
We also do not store users plain keys on the server, we store the encrypted version in a secure way which can only be decrypted using the user's password or pin and also users have full control over their KEYS, they can be imported to anywhere anytime.
Apologies for the broken links i will check and fix this, i hope this helps, if not feel free to drop anymore question(s).