> I have access to one of these data feeds of bid requests, and for the most part, they're right. Pick a random entry and even after hours of searching and correlating with the other data we have on file, it's unlikely I'd be able to identify exactly who it was (ie. Their name and address) on that website.
That's you, but what if Vodafone buys this data? They know the personal data of their broadband users but they don't necessarily have religion or other personal preferences... should they?
Or how about when it's me? Maybe I just know this space better? I can get email addresses from pretty much anywhere, md5 them, check against the email hash from Lotame (or someone; it's almost always unsalted md5), and match that against Google's Bidstream. Bingo: Now I have email to "intimate" data[1], which probably surprises a lot of people!
[1]: I like that term better than both "special category data" and the older "sensitive personal data"... I think I'm going to use it
That's you, but what if Vodafone buys this data? They know the personal data of their broadband users but they don't necessarily have religion or other personal preferences... should they?
Or how about when it's me? Maybe I just know this space better? I can get email addresses from pretty much anywhere, md5 them, check against the email hash from Lotame (or someone; it's almost always unsalted md5), and match that against Google's Bidstream. Bingo: Now I have email to "intimate" data[1], which probably surprises a lot of people!
[1]: I like that term better than both "special category data" and the older "sensitive personal data"... I think I'm going to use it