SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Treat All Sensitive Data as Important


Treat All Sensitive Data as Important

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)

Group: Administrators
Points: 689838 Visits: 21594
Comments posted to this topic are about the item Treat All Sensitive Data as Important

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Eric M Russell
Eric M Russell
SSC Guru
SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)SSC Guru (123K reputation)

Group: General Forum Members
Points: 123921 Visits: 15632
.. Recently there was a data breach from B&Q, a home improvement retailer in the UK, where 70,000 names were lost. These weren't customers, but rather people that had been caught stealing from the stores. ..


70,000 seems like a lot. It makes me wonder if this is an internal list of people who were actually caught stealing from this specific chain of stores, or maybe it was something like a black list of known shoplifters that is shared by the retail community or acquired from a 3rd party provider. I'm just theorizing here and maybe drifting off topic, but I can imagine a scenario where retailers have facial recognition functionality built into their security camera system, and then they subscribe to a mugshot database of known offenders. Why else would the store maintain a database of shoplifters?



"The universe is complicated and for the most part beyond your control, but your life is only as complicated as you choose it to be."
djackson 22568
djackson 22568
SSChampion
SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)

Group: General Forum Members
Points: 11599 Visits: 1321
I apologize for how this may sound, and yes I know you didn't mean this to sound like it does, but...

certainly most people would have little sympathy for criminals


Isn't that the real issue? Companies have little concern over our data, treat all of us no better than criminals, which results in us being harmed. Maybe we need to start thinking about not saving data that we don't need to, and have no right to, and then protecting the data that we do need to save.

Again, this is not directed at you, but at our industry. I can't even say that I think we need to do better, because the fact is that too many companies are doing nothing.


Dave
Steve Jones
Steve Jones
SSC Guru
SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)

Group: Administrators
Points: 689838 Visits: 21594
I would agree with you, Dave. Too many companies have treated us, or at least our data, poorly. That is one of the things I really like about the GDPR. Data about me belongs to me, not to the company. They don't get to use it indiscriminately for any purpose for all time.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Steve Jones
Steve Jones
SSC Guru
SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)SSC Guru (689K reputation)

Group: Administrators
Points: 689838 Visits: 21594
Eric M Russell - Thursday, February 21, 2019 7:44 AM
70,000 seems like a lot. It makes me wonder if this is an internal list of people who were actually caught stealing from this specific chain of stores, or maybe it was something like a black list of known shoplifters that is shared by the retail community or acquired from a 3rd party provider. I'm just theorizing here and maybe drifting off topic, but I can imagine a scenario where retailers have facial recognition functionality built into their security camera system, and then they subscribe to a mugshot database of known offenders. Why else would the store maintain a database of shoplifters?

70,000. A lot and not a lot. Most breaches are in the millions, so this is fairly small.

I'm not sure this was just shoplifters but suspected criminals. no idea why they keep this, but it's not a great idea to not secure the data.


Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
djackson 22568
djackson 22568
SSChampion
SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)SSChampion (11K reputation)

Group: General Forum Members
Points: 11599 Visits: 1321
Steve Jones - SSC Editor - Thursday, February 21, 2019 8:18 AM
Eric M Russell - Thursday, February 21, 2019 7:44 AM
70,000 seems like a lot. It makes me wonder if this is an internal list of people who were actually caught stealing from this specific chain of stores, or maybe it was something like a black list of known shoplifters that is shared by the retail community or acquired from a 3rd party provider. I'm just theorizing here and maybe drifting off topic, but I can imagine a scenario where retailers have facial recognition functionality built into their security camera system, and then they subscribe to a mugshot database of known offenders. Why else would the store maintain a database of shoplifters?

70,000. A lot and not a lot. Most breaches are in the millions, so this is fairly small.

I'm not sure this was just shoplifters but suspected criminals. no idea why they keep this, but it's not a great idea to not secure the data.


<humor>Correcting your typo...
no idea why they keep this, but it's a horribly bad idea to not secure the data

</humor>Smile

Dave
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum









































































































































































SQLServerCentral


Search