The obvious security problem here is that an unscrupulous employee can steal the PIN, skim the magstripe, and clean out your account at an ATM. Admittedly, they might have to (gasp!) go abroad to do it. Even easier, they could just use email to send the PIN and magstripe data to an overseas accomplice.
Dumb. Dumb, dumb, dumb, dumb.