Should I use GET or POST when requesting sensitive data?

Question

Should I use GET or POST for retrieving sensitive data, given that:

• The response will contain sensitive data.
• There are side-eff

Answer 1

I would suggest using POST, not for any real technical reason, like side-effects, but rather because servers are often configured to watch POST calls more, and many off the shelf security modules consider POST as the place where the action happens.

Thats not really a great technical reason, but I would be interested in seeing what others think.