Tackling Data Mining

Many of the free services that run through of the Internet work on the principle that you are willing to give up some personal information in return for access to their product.  Data Brokers trade in this business.  They buy up data, aggregate the records and sell it on; probably for later use in sales or marketing.  Laws such as GDPR encourage data anonymisation but if sufficient details can be gathered about an individual they can be identified.  This is legitimate big business; the UK player Databroker assumes a buyer spend in the range of £500 to £10,000.   The original data can be scraped from websites and mobile applications.  It can also be legitimately sold by the original gatherer providing that appropriate privacy conditions have been met.   While these examples are open and above board there are less reputable dealers SPAMing offers of data lists and an illegal trade in data destined for hacking and ransomware attacks.

Information about business decision makers or high spenders is of greater value to both the legitimate and criminal data broker.  The criminal will also be interested in information linked to system administration.  People involved in these areas need to be particularly aware of what data they share.  System administration staff should always be cautious but company decision makers and their support staff need to be equally careful.  Some decisions need to be made at the corporate rather than individual level.  A marketing email is more likely to be seen if sent to a named individual and better still if that individual is the relevant decision maker.  SPAM emails may use hacked or spoofed credentials to fool the recipient that these requests are from a user within the corporation or from a trusted supplier.  A company web or social media profile appears more approachable if named individuals are disclosed but this provides free contact information to the data broker.  An ‘info’ or ‘contact_us’ email in publicity exposes fewer personal details.  Most corporate emails follow some sort of ‘name@’ format so data collectors can guess derived emails with relative ease.  The individual’s SPAM filter cannot be relied upon to either filter all SPAM or send some important traffic to the wrong folder.  SPAM checker services allow senders to check the vulnerability of their messages before sending them.

Reputable data brokers will allow individuals to remove their data from records.  This process has been made easier by GDPR’s right to be forgotten clause.  As this is information that is freely bought and sold the sites of several brokers will need to be accessed and requests made.  Services are available that will do the work over several providers for a fee.  This may be a subscription model as the service assumes that data brokers will gather similar data again from another source and not delete it (as they should have done).

More from Privacy

20/08/2024

Doxing

Doxing (or Doxxing) is the dropping of documents or information onto the Internet.  It is generally taken to mean the disclosing of information that …

Read post

05/08/2024

Surveillance Pricing

In July 2024 the US Federal Trade Commission issued orders to 8 companies seeking information about their possible use of Surveillance Pricing.  These orders …

Read post

17/07/2024

Blocking AI Web Crawlers

In general web sites, posts, tweets and other on-line content all rely on sharing information.  Links to other relevant content makes it easier to …

Read post

19/06/2024

Apple Intelligence

Apple Intelligence is forecast to release as a beta in Autumn 2024 and as a full version in 2025.  It will be included in …

Read post

Sign Up

Sign up to our newsletter list here.

    Successful sign up

    Thank you for signing up to our newsletter list.

    Check your inbox for all the latest information from Kindus

    Categories