I'd say this is overreacting. Services like mint.com allow you to pool your financial services information from multiple sources for analysis. If you choose to provide the access to the third party then you accept the associated liabilities. Perhaps airlines (and other firms) can develop a "third party authenticator" to add to the existing userID/password combo to be used when you want a machine/third party to access your data.