Advice: Is it illegal to monitor HTTP requests between computer and web app, say through Charles?

Thank you for your response. We are talking about a web app, which can be accessed through af link. My employer sent a HTTP link in a guide. After accessing that link, the browser showed "Insecure" as it was HTTP, and warned the user of sending/filling sensitive information.

To confirm wether my sensitive personal information was sent encrypted or not, I opened Charles (at home with my own login) to look at how my data was sent to the app. The requests was apparently not encrypted (obviously it being HTTP), and all my personal info as SSN, birthdate, full name, phone number, address was sent as plain text.

Could one accuse me of hacking based on what I just mentioned? Thank you.

/r/sysadmin Thread Parent