While I agree that providing CC or Paypal information should be opt-in or opt-out and not a requirement, I personally see no real harm in letting Roku have that information of file. I seriously doubt that Roku will ever put such information it has on file to any sort of unethical use. I don't go about all willy-nilly, giving either my cc, banking, or Paypal information to just anyone out there, but when it comes to an established company like Roku, I personally don't think it's a big deal.
You see no real harm??? So, how are things there in Utopia, USA? Get in touch with reality, man! Established companies get hacked or have disgruntled employees every day. Every day. Chase was hacked. Citybank. And on and on. Gexa Energy, my FORMER electric provider had their entire customer database stolen by criminal employees, who proceeded to open accounts, change cc addresses, spend money...and, by the way, the company did NOTHING to help their customers. You only want to give your cc number when you must do so.
My Roku problem was resolved by calling technical support, who assisted me in getting a no-cc account opened. It shouldn't be that much trouble. The CC should be optional, and then there is no problem. My Roku is working fine now, but I still will caution potential customers to be aware of this bad policy.