Jeremy Duffy - Awareness Advocate » Stop Data Rape (How to Stop ID Theft, Part 2)

NOTE! This post contains Expandable Sections. To expand the section and see the full text instead of just the summary, click the [+] sign.

Definition and Description

The Data: Any data that has relevancy to you, but not to them

The Rape: Taking personal or sensitive data that is either not required for a given transaction (Movie store asking for a social security number before renting to you) or should be destroyed after a transaction, but isn't (Movie store keeping a database on exactly who rented what). Another example is how you are forced to create an account with an online retailer just to purchase something. In some cases, I have even had an account created for me without my permission when I called to make an order instead of doing it through the web.

Keeping control over who has access to what information about you is the very essence of privacy and data mining/brokering/sharing takes that control away.

[+] Why it's a problem

Data collected for one reason can easily be used (and often is) for a completely different reason. It's in your best interests to make sure that data you provide is not spread around to people or companies you don't know for the following reasons:

ID Theft
Scams
Manipulation
Exclusion and Prejudice
Crime

[-] Why it's a problem

ID Theft

Most obvious is the problem of identity theft. It doesn't require a lot of data to rob you. Opening accounts in your name is simply a matter of having your name, address, phone number, job information and social security number (all available from a data-broker).

Scams

All I need to scam you blind is know about your family and your current finances. In fact the more I know about you, the easier this gets.

[+] Example

Your son is on his honeymoon in the Bahamas. You get a phone call...

Even if you don't agree with that example, it's a fact that many old people can't tell if the nice young person on the phone is their grandchild or not. When the "grandchild" asks for money, they'll often provide it.

Manipulation

If you don't keep my data on file, you can't lose it

Companies complain and moan about how they need all this data to "tailor your experience". What that means is, "exploit you where you're weak" and make money from you.

A company that buys the customer list from Jenny Craig might guess that you have weight control problems and send you advertisements for diet plans and pills, or worse: catalogs for gourmet chocolates. If your purchase records show items like newborn diapers and formula, perhaps now is the time to hit you up for contributions for college funds and insurance.

Exclusion and Prejudice

Let's say you have AIDS and many people don't understand the disease. If your doctor or hospital shared the information with marketers (or if your purchasing records show AIDS-related medication), it could spread. Maybe your gym would cancel your membership fearing the backlash if others found out. Maybe your kids would get kicked out of school by an administration that doesn't understand the risks. Maybe neighbors would start vandalizing your house thinking you've got the plague.

Think that's extreme? The US Census data was used during World War II to identify Americans of Japanese descent for internment. They didn't even have a communicable disease, they were just foreign!

Crime

How easy is it to stalk you if your name and address are always avaialble from the nearest data broker?

If I have access to your credit card receipts or your "shopper card" records, it's easy for me to see whether you have stuff worth robbing.

If I know your annual income is off the charts, perhaps I can arrange to have your son kidnapped (which becomes even easier because I know your daycare provider's name is listed on your credit card statement).

Fixing the problem

A citizen should be able to control their own data. This does NOT mean that you should be able to just correct data, but that, minus being involved in crimes, you should exist in no databases against your will. All services should be usable without any personally identifiable information, or in the cases that such information is required (such as delivery of an item or billing), the data should be erased from all records, databases, backups etc. upon completion of the transaction.

Companies should only ask for information they need and delete as much information as they can after the transaction is complete

For example: public libraries and video rental stores keep records of what is checked out, but they have no business keeping that data once the item has been checked back in. This serves no legitimate purpose and should be disallowed. They can keep information on what was checked out and when for organization and statistics, but the personal information should be removed.

Another example: If I make a credit card purchase online, I should not have to worry that they are keeping my card on file against my will. It should be used for the transaction only and then purged.

And another: I should not have to create an account with anyone for service. Forced registrations are identity rape and have no legitimacy in a consumer transaction. If I wanted to provide my data for easier checkout on return business, I would do so!

So, put simply, there needs to be stiff regulation of the storage and use of data.

They Can't Lose Data They Don't Have

There's a very simple philosophy I follow when it comes to data security. It doesn't matter how bad the security is or how smart the hackers are, if a company doesn't have my data, they can't lose it.

So remember every time there's a data breach and millions of customers' credit cards are stolen… It's not smart hackers, it's the data rapists who stored your information in the first place.

Seminar Modules

Article Categories

Blog Post Categories

Stop Data Rape (How to Stop ID Theft, Part 2)

By: Jeremy

Definition and Description

[+] Why it's a problem

[-] Why it's a problem

ID Theft

Scams

[+] Example

[-] Example

Manipulation

Exclusion and Prejudice

Crime

Fixing the problem

They Can't Lose Data They Don't Have

Did this post help you?

Share This Page

Leave a Comment

Search

Jeremy's Picks

Top Posts by Vote

Article at Random