Introduction
Ping Identity’s CISO Advisory Council is comprised of CISOs and security leaders from enterprise organizations, including: Chris Gullett, VP of Information Security for Allegiant Air; Krizi Trivisani, CISO for American Red Cross; Diane Ball, CISO for BCBS Tennessee; Harshal Mehta, CISO for Carlson Wagonlit; Karl Mattson, CISO for City National Bank; Sam Masiello, CISO for Gates Corporation; Michael Strong, CISO for GCI; Rich Gay, CISO for PowerSchool Group LLC; Mark Freed, CISO for TechnipFMC; Adrian Mayers, CISO for Vertafore; and Grieg Arnold, CISO for Vista Equity Partners.
73%
of consumers say a good experience is key to their brand loyalty.1
32%
of consumers will leave a brand they love after just one bad experience.2
Customer identity data can be invaluable to your ongoing business success as you navigate digital transformation and modernization initiatives. You can use this data to gain critical insights into trends and shifts in the market, providing the information you need to bring the right products and services to market.
Customer identity data can also be leveraged to deliver the type of experiences your customers want and need. For example, you can use it to increase personalization by delivering the right offer to the right customer at the right time.
But in an age of increasing regulations around privacy and consent, you must be careful that you don’t prioritize improvements in your customers’ experience over judicious management and use of their personal information. Regulations like GDPR and others impose steep fines for non-compliance. In early 2019, Google was fined $57M for failing to comply with GDPR—a penalty 3X higher than any HIPAA penalty issued over the last eight years. While Google is disputing the infraction, their case underscores the reality that today’s organizations must walk a fine line when it comes to managing and securing customer data.
The risk of being fined for non-compliance is just the tip of the iceberg. The loss of customers and revenue, as well as the reputational damage that results from a data or privacy breach often have a bigger and more sustained impact.
While digital transformation initiatives offer immense potential for growth, they also present challenges and risks, the scope and scale of which are worthy of increased attention from the C-suite and additional investment in data protection. This paper provides guidance in navigating these risks and challenges, specifically with regard to securing customer identity data.