Email is not secure, it can be intercepted, forwarded, stored indefinitely, and accessed if an account is compromised. Once a password is in an inbox, you lose control over where it ends up. It becomes a permanent risk rather than a temporary one.
If a password ever has to be shared, it should only be done through an end-to-end encrypted platform like WhatsApp. End-to-end encryption means only the sender and the recipient can read the message, not the platform, not third parties, and not anyone intercepting traffic. Even then, it should be treated as a short-term solution, with the password changed immediately after access is granted.
Think of email as a postcard and WhatsApp as a sealed envelope. One can be read by anyone who gets hold of it, the other is protected in transit. For anything sensitive, the difference matters.
Good security is about reducing how long sensitive information exists in vulnerable places. No emails. No screenshots. No browser storage. Encrypted sharing only, followed by immediate password changes. That’s how you protect your website, your systems, and your digital reputation.