There are always trade-offs between convenience, security, and the audit function. Everyday people demand convenience, and don't care that their activity is being logged by their service provider, ready for audit. Politicians are a little cannier: they want convenience, but they also desire to evade whatever audit function they may be subjected to. At the state level, it is considered easier to punish offenders than harden the infrastructure against attacks. People in general seem to have a high tolerance for loss of privacy, loss of service, and even the threat of identify theft. In all cases, security is bottom of the list of considerations.
grzegorz wrote:It is reportedly very easy to hack.
'Easy' is a relative term. Hacking a phone, maybe easy. Evading the state apparatus tasked with finding and punishing you - not so easy.
Leave the hacking of state-level actors to other states, unless you want to be a martyr.