Deloitte on what retailers can do to protect consumer data privacy
New report from Deloitte on what retailers can do now to prioritize consumer data privacy, challenges they face, and progress thus far.
New report from Deloitte on what retailers can do now to prioritize consumer data privacy, challenges they face, and progress thus far.
Personal consumer data is exposed in many ways, a new Deloitte report reveals, and much of it is only minimally controlled by the user. Is it any wonder that nearly half of consumers feel they have little to no control of their data?
Types of consumer data revealed daily—source: Deloitte
The Deloitte report emphasizes why it’s important for retailers to prioritize consumer privacy, with billions of dollars at risk in noncompliance penalties in the state of California alone. Europe’s GDPR legislation launched in May 2018 and served as a warning for US retailers who are now dealing with similar initiatives in the states.
Nearly half of US states are developing new data policy legislation, so the pressure is on retailers to understand privacy restrictions on a state-by-state basis or risk high penalties due to noncompliance.
Source: Deloitte
The three states that have already enacted privacy laws—California, Nevada, and Maine—represent nearly 43 million Americans, with 19 other states from Washington to New York debating new privacy laws that will potentially cover 134 million additional Americans.
Retailers lack comprehensive privacy policies for a variety of reasons, the top one being lack of funding with 43% of respondents indicating this was a challenge for them. Other top challenges include lack of clear government regulations (43%), lack of privacy leadership within the organization (37%) and inadequate data management (50%).
Source: Deloitte
Only 32% of retailers surveyed have what Deloitte defines as a trust-focused, consumer-centric privacy policy. Dubbed “Leaders” in consumer privacy, these companies share a similar philosophy to consumer privacy in that they have integrated a privacy policy into their overall corporate strategy.
Deloitte compares this approach with companies who they define as “Adopters”—those companies that are working to improve their focus on privacy but aren’t quite there yet. 41% of respondents were adopters with the final 27% categorized as “Laggards”—retailers who may or may not have a privacy policy on paper and do not have the capability to maintain privacy with any consistency.
Source: Deloitte
All retailers should look to Leaders as a reference point when crafting thoughtful, corporate-wide privacy strategies that are consumer centric and focus on data security. The Deloitte study emphasizes four key characteristics of Leaders as follows.
The focus on data security at the legislative level is only going to increase. Many consumers are unaware of the vast amount of personal data they share daily. Retailers would benefit from familiarizing themselves further with these findings and more in the full report.