I assume this idea would never be considered as a possibility by most people here (yeah, trillions is hyperbole), but it’s ready the case that firms in the Financial Services industry screen all incoming data over all channels for anything that looks like PII. The only stuff that makes it through with the recipient being unmolested must be approved by compliance and infosec folks. Anyway, this is just to say that refusing to accept unsolicited personal financial information is very much already a thing in industries outside Big Tech.