Examples, Personal data and Retail - Information Management Today

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A navigation app anonymizes activity data before analyzing it for travel trends. One cannot overstate the importance of data privacy for businesses today.

Data Privacy

Data Privacy Privacy GDPR Personal data

Are Retailers Shopping for a Cybersecurity Breach?

Thales Cloud Protection & Licensing

NOVEMBER 22, 2022

Are Retailers Shopping for a Cybersecurity Breach? Retailers started the century as the prime targets for cyber attackers looking for credit card data. Today, unfortunately, retailers are again coming back to the spotlight. Similar to many organizations, 36% of retail respondents cited human error as the leading threat.

Retail

Retail Cybersecurity Ransomware Authentication

Data monetization: driving the new competitive edge in retail

CGI

DECEMBER 9, 2019

Data monetization: driving the new competitive edge in retail. Retailers are fully aware that their future relies largely on their ability to use data efficiently. Data has become an essential resource and a key element in the growth strategy of large retail organizations. ravi.kumarv@cgi.com.

Retail

Retail Sales Customer Experience Artificial Intelligence

Selling and utilising personal data in an insolvency situation

Data Protection Report

JUNE 1, 2020

Many businesses are suffering serious financial difficulties as a result of COVID-19, particularly those in the retail, hospitality and tourism sectors. But this is a tricky area to navigate, particularly following the General Data Protection Regulation ( GDPR ), since both the ICO and the FCA have started to pay more attention to this area.

Personal data

Personal data Sales Marketing GDPR

DPIAs for retail and hospitality

IT Governance

MARCH 26, 2019

It’s relevant for everyone, including retail and hospitality. Retail and hospitality organisations will likely need to conduct several to cover all their processes, both new and existing. Common activities for retail and hospitality requiring DPIAs. The ICO also has excellent guidance on exactly when to carry out a DPIA.

Retail

Retail Risk GDPR Government

Examples of data processing activities that require a DPIA

IT Governance

JUNE 19, 2019

The GDPR (General Data Protection Regulation) requires organisations to conduct a DPIA (data protection impact assessment) whenever processing is ‘likely to result in a high risk’ to the rights and freedoms of individuals. Before we crack on with our examples, we should explain how you can identify high-risk data processing activities.

GDPR

GDPR Personal data Risk Data breaches

From channel to customer: How an omni-channel experience is the key to the retail industry’s success

CGI

DECEMBER 20, 2018

From channel to customer: How an omni-channel experience is the key to the retail industry’s success. Is the hype around the retail store being dead simply that, hype? Retailers are making a decided shift in focus from channel to customer , led by the growing demand for seamless and personalised customer experiences.

Retail

Retail Customer Experience Consumer Services Personal data

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

Privacy and Cybersecurity Law

JULY 26, 2021

On July 5, 2021, the Italian supervisory authority (“ Garante ”) published an injunction against a company operating a food delivery app (“ Company ”) over the processing of riders’ personal data with respect to the use of algorithms for the management of the orders. Retention period. The need for a DPIA.

Personal data

Personal data GDPR e-Delivery Communications

Don’t let bad data drag you down: A retailer’s guide

Collibra

APRIL 11, 2023

Retail is a dynamic and competitive market. In addition to the traditional brick-and mortar-stores, the retail business today includes online and mobile stores. Every process at every stage of these stores relies on data. The right kind of data can drive great innovations in retail. What if they do not match?

Retail

Retail Sales Compliance Marketing

Businesses to Assist NHS Test and Trace Efforts

Hunton Privacy

JUNE 25, 2020

Establishments and companies in the UK will therefore be responsible for the additional collection and potential sharing of customers’ personal data. Any entity engaging in this kind of data collection will need to comply with the requirements of data protection law.

Data collection

Data collection Personal data Compliance Retail

From channel to customer: How an omni-channel experience is the key to the retail industry’s success

CGI

DECEMBER 20, 2018

From channel to customer: How an omni-channel experience is the key to the retail industry’s success. Is the hype around the retail store being dead simply that, hype? Retailers are making a decided shift in focus from channel to customer , led by the growing demand for seamless and personalized customer experiences.

Retail

Retail Customer Experience Consumer Services Personal data

Catches of the Month: Phishing Scams for November 2022

IT Governance

NOVEMBER 7, 2022

Welcome to our November 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Elsewhere, we assess data breaches at a cancer research facility and the US retailer Bed Bath & Beyond. Get started.

Phishing

Phishing Retail Data breaches Insurance

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

A data processor is the organisation that does the legwork; it processes the information on the controller’s behalf. For example, a marketing executive at a retailer hires a company to conduct a survey on shoppers’ browsing habits. Responsibilities of the data processor. The means used to delete or dispose of the data.

GDPR

GDPR Retail Data collection Personal data

Shopping safely over Black Friday and Cyber Monday

IT Governance

NOVEMBER 14, 2018

Black Friday and Cyber Monday are almost upon us, kickstarting what retailers hope will be a successful trading period. However, the flurry of purchases and the data that represents means cyber criminals will also be looking to cash in. According to McKinsey , 92% of UK shoppers are aware of Black Friday.

Retail

Retail Personal data GDPR Risk

Data controller vs data processor: what’s the difference?

IT Governance

AUGUST 19, 2020

In this blog, we take a close look at what a data controller and processor does and how they fit into your organisation. What is a data controller? A data controller determines the purposes for which an organisation collects and uses personal data. Are you a data controller or a data processor?

GDPR

GDPR Personal data Compliance Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The GDPR puts forth a litany of rules for how organizations in and outside of Europe handle the personal data of EU residents. The details of any organization’s plan to become fully GDPR compliant will vary based on the data the organization collects and what it does with that data.

GDPR

GDPR Compliance Personal data Privacy

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You must tell people when you’re collecting their personal information to give them the opportunity to exercise their data subject rights. These rights enable individuals to access the personal data organisations store on them and to challenge the way their information is used. Control who has access to CCTV.

GDPR

GDPR Privacy Retail Personal data

Data Subject Access Requests – High Court dismisses claim where DSAR regime abused

DLA Piper Privacy Matters

JANUARY 15, 2021

Data Subject Access Requests – no unqualified right to documents. Due to the dates on which the DSARs had been made, the relevant legislation was in fact the Data Protection Act 1998 ( “DPA 98” ).

Access

Access GDPR Personal data Retail

Ready for Take-off: Rising Above Airport Cybersecurity Challenges

Thales Cloud Protection & Licensing

NOVEMBER 15, 2023

Data sprawl Airports handle the identity records of a highly diverse population of employees, including hospitality, retail, security, and maintenance staff. Also, on average, airports can process up to seven pieces of personal data for every passenger.

Cybersecurity

Cybersecurity Authentication Access Compliance

Why Twilio’s $3.2B acquisition of Segment may not be enough

Reltio

OCTOBER 22, 2020

Twilio as an acquirer is not a surprise because Twilio is positioned as a Customer Engagement Platform for voice and messaging but did not have any coverage for data. Segment is a Customer Data Platform (CDP) player that focuses exclusively on person data. Why focusing only on 3 rd party data enrichment is a limitation .

Personal data

Personal data Marketing Customer Experience Retail

Avoiding, Managing And Responding To Cyber Incidents

Data Protection Report

NOVEMBER 2, 2023

In 2017, Equifax Inc, suffered a cybersecurity breach, with hackers able to access the personal data of around 13.8 The breach included data held by Equifax Inc in connection with two of Equifax’s products.

GDPR

GDPR Risk Cybersecurity Compliance

The EDPB’s Narrow View of Contractual Necessity

HL Chronicle of Data Protection

APRIL 16, 2019

The European Data Protection Board (EDPB) has adopted the narrowest possible interpretation of ‘contractual necessity’ as a ground for processing of personal data. The EDPB provides a number of examples to illustrate its position.

Personal data

Personal data Retail GDPR IT

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

Data Matters

FEBRUARY 10, 2020

For example, a message from a supermarket chain sent to an individual saying ‘Your local supermarket stocks carrots’ is clearly still promotional despite the use of a neutral tone. The ICO gives the example of a supermarket sending out a marketing email promoting a charity it supports.

Marketing

Marketing GDPR Personal data Communications

When It Comes to a Data Breach, How Do You Want to Be Notified?

Thales Cloud Protection & Licensing

AUGUST 7, 2018

If you have looked at our recently released annual Data Threat Report: Retail Edition , you understand this is not just hyperbole. retail sector needs to come to terms with some bad news. The retail sector is responding to the onslaught of breaches, with 84% of companies surveyed planning to increase IT security spending.

Data breaches

Data breaches Retail IT Communications

List of Data Breaches and Cyber Attacks in 2023

IT Governance

JUNE 1, 2023

Shields Health Care Group The largest data breach of April 2023 was at the Shields Health Care Group, a Massachusetts-based medical services provider. Reports emerged near the end of the month that a cyber criminal had gained unauthorised access to the organisation’s systems and had stolen the personal data of 2.3

Data breaches

Data breaches Insurance Personal data Ransomware

New guidance on direct marketing

Data Protection Report

JANUARY 10, 2023

Unlike the Code, the Direct Marketing Guidance does not, for example, discuss the PECR position on how long consent lasts. 2] Catalogue retailer Easylife fined £1.48 million for breaking data protection and electronic marketing laws | ICO. [3] This includes people’s expectations and their relationship with the organisation.

Marketing

Marketing B2B Personal data Retail

Catches of the Month: Phishing Scams for July 2022

IT Governance

JULY 5, 2022

Welcome to our July 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over their personal data. The next most frequent targets were software-as-a-service and webmail providers (20.5%) and e-commerce sites and retail stores (14.6%).

Phishing

Phishing e-Delivery Retail Insurance

Ireland: New DPC Guidance Sets Regulatory Expectations around Use of Website Cookies

DLA Piper Privacy Matters

APRIL 9, 2020

In its report, the DPC noted that the ad-tech industry is subject to separate inquiries – this report is more broadly focussed on organisations across a range of sectors, including retail, entertainment, insurance, banking, public sector, media and publishing.

GDPR

GDPR Analytics Personal data Compliance

5 Steps CPGs Should Take When Considering Direct-To-Consumer (D2C)

Reltio

MAY 26, 2020

The What: Personalization – Data and the analysis of it gives CPGs the opportunity to personalize customer experiences more accurately, as well as target consumers with the right advertising. In order for retailers to sell flour to consumers, the bags are generally 500g or 1kg in size.

Customer Experience

Customer Experience Retail Sales Digital transformation

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Security Affairs

NOVEMBER 8, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Data breaches

Data breaches Insurance Retail Ransomware

Streamlining onboard sales through a single, back-office solution

CGI

APRIL 21, 2015

Retail is a prime area for achieving both objectives, and travel operators are seeking to invest in retail systems that streamline and improve processes while offering a shorter payback period and generating more revenue. Many back-office retail solutions fall short of managing all of the required functions.

Sales

Sales Retail Cloud Personal data

Heathrow Airport fined £120,000 for data breach

IT Governance

OCTOBER 9, 2018

The ICO (Information Commissioner’s Office) has fined Heathrow Airport £120,000 for failing to secure sensitive personal data after a member of public found an unencrypted USB stick containing data about the airport’s staff. How did the data breach occur? However, the ICO hasn’t confirmed this.

Data breaches

Data breaches Personal data Libraries Information Security

40% of organisations respond to bogus DSARs

IT Governance

AUGUST 14, 2019

Pavur refused to name the organisations that mishandled the requests, which is wise, because it would encourage miscreants to submit their own fake DSARs and gain access to other people’s personal data. Organisations in the EU have always been required to provide copies of personal information upon request.

GDPR

GDPR Retail Access Personal data

The Tragedy of the Data Commons

John Battelle's Searchblog

JULY 22, 2018

” Unsurprisingly, the health industry has developed an insatiable appetite for personal data about the individuals it covers. In the essay, Hardin employs a simple example of a common grazing pasture, open to all who own livestock. ” A good example is public transportation. The Tragedy of the Commons.

Insurance

Insurance Personal data Education Government

The Economy of Things: the next value lever for telcos

IBM Big Data Hub

JULY 11, 2023

The anchor identity of the device along with metadata about the device itself, data about its locatio , and transactions made on its own behalf is its own unit of value. The EoT requires interoperable marketplaces of exchangeable value based on verifiable, trusted data that can be surfaced at the right time and in the right channel.

IoT

IoT Artificial Intelligence Agriculture Blockchain

PCI DSS: Lessons to learn from recent payment card breaches

IT Governance

SEPTEMBER 14, 2018

Over the past month or so, we’ve been discussing the threats associated with payment card breaches, and why it’s important to comply with the PCI DSS (Payment Card Industry Data Security Standard). Further reading: Why you should be concerned about payment card data breaches. The cost of a payment card data breach.

Data breaches

Data breaches Paper Retail Manufacturing

How to Take Your Business to The Next Level with Data Intelligence

erwin

JUNE 11, 2020

Aside from these, these data intelligence tools also provide healthcare institutions with an encompassing view of the hospital and care critical data that hospitals can use to improve the quality and level of service and increase their economic efficiency. Great examples are BMW Mini , Comfort Keepers, and Teleflora.

Analytics

Analytics Blockchain Artificial Intelligence Big data

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

For example, “Household” is defined as “a person or group of people occupying a single dwelling” (999.301(h)). The proposed rules provide two examples to help determine if a business practice is discriminatory (999.336(c)). Article 3 provides rules on how requests to access or delete household information should be treated.

Sales

Sales Retail Privacy Access

Rent a hacker: Group-IB uncovers corporate espionage group RedCurl

Security Affairs

AUGUST 13, 2020

The attackers seek to steal documents that contain commercial secrets and employee personal data. Since then, it has conducted 26 targeted attacks on commercial organizations alone, including companies in the fields of construction , finance , consulting , retail , banking , insurance , law ,and travel.

Cloud

Cloud Phishing Analytics Access

Irish data protection authority launches new cookie guidance and indicates cookie investigations are on the horizon

Data Protection Report

APRIL 16, 2020

Organisations must remember to conduct Data Protection Impact Assessments, particularly where data collected from cookies is combined with personal data from other sources. The Report suggests that this may be an area where the DPC will focus its investigation efforts.

Analytics

Analytics Data collection Compliance Privacy

In a Few Days, Credit Freezes Will Be Fee-Free

Krebs on Security

SEPTEMBER 10, 2018

There are dozens of private companies that specialize in providing consumer credit reports and scores to specific industries, including real estate brokers, landlords, insurers, debt buyers, employers, banks, casinos and retail stores. In other cases, it’s trivial for anyone to sign up for these services.

Access

Access Military Retail Security

Online market for counterfeit goods in Russia has reached $1,5 billion

Security Affairs

OCTOBER 15, 2018

It also leads to a decrease in what we call the psychological price, i.e. the cost that customers are willing to pay for a product from the official retailer. For example, a fake account in Pavel Durov’s name brought in more than $50000 in only a couple of hours after being created.

Marketing

Marketing Phishing Retail Cybersecurity

We Have Yet to Clothe Ourselves In Data. We Will.

John Battelle's Searchblog

MARCH 12, 2014

We are all accustomed to the idea of software “Preferences” – that part of the program where you can personalize how a particular application looks, feels, and works. On a Macintosh computer, for example, “System Preferences” is the control box of your most important interactions with the machine.

Retail

Retail Mining Sales IT

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

Articles 5(1) and 5(2) state that personal data must be processed lawfully, fairly and in a transparent manner, and that the data controller must be able to demonstrate that it is doing so. Articles 24(1) and 32(1) state that organisations must implement appropriate technical and organisational measures to protect personal data.

Security

Security Data breaches Ransomware Military

Data privacy examples

Are Retailers Shopping for a Cybersecurity Breach?

Trending Sources

Data monetization: driving the new competitive edge in retail

Selling and utilising personal data in an insolvency situation

DPIAs for retail and hospitality

Examples of data processing activities that require a DPIA

From channel to customer: How an omni-channel experience is the key to the retail industry’s success

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

Don’t let bad data drag you down: A retailer’s guide

Businesses to Assist NHS Test and Trace Efforts

From channel to customer: How an omni-channel experience is the key to the retail industry’s success

Catches of the Month: Phishing Scams for November 2022

The GDPR: Everything you need to know about data controllers and data processors

Shopping safely over Black Friday and Cyber Monday

Data controller vs data processor: what’s the difference?

How to implement the General Data Protection Regulation (GDPR)

Does your use of CCTV comply with the GDPR?

Data Subject Access Requests – High Court dismisses claim where DSAR regime abused

Ready for Take-off: Rising Above Airport Cybersecurity Challenges

Why Twilio’s $3.2B acquisition of Segment may not be enough

Avoiding, Managing And Responding To Cyber Incidents

The EDPB’s Narrow View of Contractual Necessity

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

When It Comes to a Data Breach, How Do You Want to Be Notified?

List of Data Breaches and Cyber Attacks in 2023

New guidance on direct marketing

Catches of the Month: Phishing Scams for July 2022

Ireland: New DPC Guidance Sets Regulatory Expectations around Use of Website Cookies

5 Steps CPGs Should Take When Considering Direct-To-Consumer (D2C)

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Streamlining onboard sales through a single, back-office solution

Heathrow Airport fined £120,000 for data breach

40% of organisations respond to bogus DSARs

The Tragedy of the Data Commons

The Economy of Things: the next value lever for telcos

PCI DSS: Lessons to learn from recent payment card breaches

How to Take Your Business to The Next Level with Data Intelligence

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Rent a hacker: Group-IB uncovers corporate espionage group RedCurl

Irish data protection authority launches new cookie guidance and indicates cookie investigations are on the horizon

In a Few Days, Credit Freezes Will Be Fee-Free

Online market for counterfeit goods in Russia has reached $1,5 billion

We Have Yet to Clothe Ourselves In Data. We Will.

2022 Cyber Security Review of the Year

Stay Connected