Data breach is the Exxon Valdez of privacy
- Michael Fertik is the founder and CEO of Reputation.com, an online privacy and reputation management company. He is a member of the World Economic Forum Agenda Council on Internet Security and recipient of the WEF Technology Pioneer 2011 Award. The opinions expressed are his own. -
Last week’s Epsilon data breach is the Exxon Valdez of privacy. It is a wake-up call that it is time to reform our privacy infrastructure from the ground up, much as the Exxon Valdez oil spill of 1989 should have served as the wake-up call to reform our energy delivery infrastructure to prevent disasters like last year’s BP Deepwater Horizon spill.
On Friday, the email marketing firm Epsilon revealed that tens of millions of private names and email addresses were stolen, putting millions of people at risk of fraud. Intruders were able to harvest names and email addresses that belong to customers of companies like Best Buy, Capital One, and J.P. Morgan. Banks and retailers gave this data to Epsilon to run email marketing campaigns. In turn, someone penetrated Epsilon’s security, and was able to download millions of names and addresses, which presumably are being sold on the black market at this very moment.
The immediate result will be literally billions of spam and fraud messages flooding inboxes around the world, many trying to trick users into giving up financial information to scammers. But the real impact of Epsilon is to bring home the dangers of corporate strip-mining of our personal information. Just as the Valdez spill proved that there is no perfectly safe way to transport petroleum, every incident like Epsilon should teach us that there is simply no perfectly safe way to transport and store massive amounts of private data.
Companies like Epsilon store your personal data in huge databases, each containing millions of pieces of personal information. Each of these personal information databases is like a supertanker plying the high seas. When everything goes exactly as planned, there is admittedly little risk. But, if the Exxon Valdez, the Deepwater Horizon, and countless smaller spills have taught us anything, it is that things always deviate from the plan. And no company can possibly foresee every way that data storage can go wrong: a disgruntled employee, a skilled hacker, a sloppy IT staffer, a new attack on web servers, or possibilities that we haven’t thought of yet—there will always be unanticipated flaws and unforeseen shoals.
Each of these data leaks on its own is scary enough, but the real danger comes in the fact that so much of your personal data is already broadcast, purchased and mashed-up all over the Internet. Much of this data exists because marketers want to create more “intelligent” dossiers about consumers, in an attempt to identify all of your desires so that they can pitch the “perfect” products to you. And, as we live more of our lives online, we inevitably reveal increasingly sensitive information about ourselves. The result is that there may be thousands of databases that hold intensely personal information about you.
As long as these databases exist, we will see a constant flow of data breaches and predictable finger-pointing. Instead, we need real reform to put consumers back in control of their personal information. Reform is more than just changes around the margins of data security standards. Instead, we need to reform online privacy from its core, to stop the sale and storage of massive amounts of personal data in its tracks. This will require a paradigm shift in the way society collects, stores, and uses personal information. Consumers—not companies—should be at the center of the privacy ecosystem. Consumers may choose to grant access to their personal information to companies, but consumers must control it. This change must reach the foundation of all industries, ranging from healthcare, to IT, to government, to media.
Reform must give consumers digital control over their personal data. Imagine that instead of your personal data being copied from one data marketer to another, you could hold it in an encrypted secure digital vault. The companies you approve can access your personal data as they need it, but they cannot copy and store it into massive databases. You could still opt-into whatever marketing and other services you want, but you will own your data. Your data will not be in countless databases across the Internet. And, unlike a marketing company, you will have every incentive to keep your own data safe and secure.
This system to empower consumers while still allowing desirable data uses can be formed through intelligent collaboration with all stakeholders. The goal is not (and should not be) to destroy marketing or personalized services: when done right, the Internet has the potential to protect privacy while delivering valuable personalized content and intelligent advertising. But we must create the conditions for privacy-protective systems to grow if we ever hope to stop the flood of embarrassingly large data breaches. The “Epsilon Valdez” breach revealed millions of names and email addresses; the next breach may involve bank accounts, social security numbers, and more.
Follow Fertik on Twitter: @michaelfertik