Let’s talk about CyberSmart Privacy….
From the youngest to the oldest person in society, the idea of private data in an interconnected world is nearly obsolete. Regulatory bodies like HIPAA, PCI, NIST and others have worked hard to generate standards and policies to guide companies in the protection of your private, personally identifiable data. And then the matter how many standards we have to protect us our own worst enemy is still ourselves.
I’m going to put together an example of a generic person and I’d like for you to think about what kinds of information can be gained publicly about this person based on just a couple of factors.
Here comes Jane with her Samsung S7 phone, iPad mini, iPod and Beats headphones, some books and a small bag, with her wallet. In Jane’s wallet she has an iTunes card, a bank debit card, some cash and a few frequent shopper cards from various stores.
No without thinking about any criminal activity let’s think about what kind of information Jane is giving away for free about herself.
I’ll start with the iTunes card…. It seems innocent enough and we know Apple cares about our privacy but within iTunes card she has linked an account, where she listens to music, makes purchases of books, podcasts and songs. She’s leaving tracks of metadata behind so that Apple knows her preferences for music and books and will soon begin suggesting new items based on the data they aggregate from her. Beyond that, they also know how often she listens to certain songs, or how often she logs into iTunes, on what days and what times of day…. you’d be surprised how much data the iTunes card can collect on a person, with an associated account. They will also track what device or computer you used to log into their site, any payment information you have stored for transactions…. This is what we think about when we talk about big data…. And even just the iTunes account Jane is handing over so much personal information….
So let’s get a little more generic, data collected from our retailer from
a customer sometimes is used to market new products and services to that customer and sometimes the retailer will take that information and sell it to partners and other retailers. Sometimes a retailer main take note that you’ve used a visa card for a transaction and they will correlate your data with other visa card users, maybe getting better demographics.
When you think about it big data is everywhere and you are contributing to the metrics that can be used for and against you…. Which makes your personally identifiable information less than private…
I will let you ponder on this, the next time I will begin to dive deeper into becoming CyberSmart with your private, personally identifiable information.