hakim.ali - Thursday, December 20, 2018 8:12 AM

Of course we should ask any entity that collects our data to be accountable for it, but imho we also need to accept and internalize that:

1. Our sensitive data will get out into the world. It is just a matter of time. Whether it is because of any given company's lax security policy, or malicious actions by internal/external personnel, or intentional selling of user data without approval (*cough* Facebook *cough*).

2. We individually need to own some part of keeping our data safe, or implementing processes that won't hurt us too badly when our data gets out. This includes, among other things:
- Locking our credit reports
- Not using the same password on more than one site
- Not using the same credit card number on more than one site (the one I use allows me to create unlimited virtual numbers, so I create a new one for each website I do business with; there are 3rd party providers that will also do this for you), so if one site is hacked you don't have to change it everywhere else.