advertisement
advertisement

This is page 2 of:

Instant Face ID: CRM Will Never Be The Same

August 4th, 2011

The professor sees this as the beginning of a period where “faces will be conduits between online and offline data” and an “age of augmented reality, in which online and offline data are blended in real time, [and] may force us to reconsider our notions of privacy.” Even that old retail privacy standby—seeking opt-in—won’t be a help here, Acquisti argues, “since most data is already publicly available. Facebook sets primary profile photos to be visible to all by default, and members to sign up to the network with their real identities.”

Said Acquisti: “I am not sure this is the kind of world I’d like to live in.”

The retail potential here is virtually limitless. Any time someone walks into your chain, the video can identify that person as a unique individual. Every product examined, every perfume sniffed and any book that is flipped through can be captured. In the meantime, the system is using public databases to identify the customer, to add a name—and much more—to the file. Once identified, it can do a system lookup to try and match the name with an existing CRM file.

This system could work up extensive records, even for a customer who has no loyalty card and pays for everything with cash.

That’s all on the CRM side. This social-media-images-facial-recognition intersection also has vast potential for loss prevention and security. What if security footage could identify—within the three seconds that the CMU study found—almost anyone filmed? What if any prospective employees could be linked to a criminal record before they fill out their application?

Here’s one for the store general manager: What if the system could flag store management whenever the camera identifies someone who works for a direct rival entering the store? How about some data sharing? What if a security third-party company decided to offer data analysis on the side? Perhaps stores could be sold data about customers shopping at competitors, so they can flag those customers for extra nice treatment?

Mark Rasch, StorefrontBacktalk‘s legal columnist and the former head of the U.S. Justice Department’s technology crimes group, said the viability of these experiments is quite real given that Facebook is just one part of the images publicly out there.

“Even if you don’t have a Facebook page, if someone has posted a picture of you—say, your high school yearbook picture—and attached your name to it, you can be searched. Other picture databases, like Flickr and others, may provide additional information, particularly if they are made public. Note that we are not talking about any private databases like DMV records, credit reports or internal company databases. Just what can be found on the Web.”

The next step will be to marry the publicly discovered data with private sources, including the databases in your own chain. “Once I have linked your picture to your name, I can then search for things like your address, your telephone number, your date of birth, criminal history, lawsuits, bankruptcy filings, divorce actions, lawsuits filed and a host of other public databases. Knowing your date of birth and location, I can make educated guesses about your Social Security number (at least the first five digits), and compile a detailed profile of you. If I then link this information to proprietary databases, I can know a great deal about your purchasing habits, Web surfing habits, economics, etc. I can also link this to the car you drove to the mall in, the license plate number and other information. All of this information about potential customers can be displayed instantly.”


advertisement

Comments are closed.

Newsletters

StorefrontBacktalk delivers the latest retail technology news & analysis. Join more than 60,000 retail IT leaders who subscribe to our free weekly email. Sign up today!
advertisement

Most Recent Comments

Why Did Gonzales Hackers Like European Cards So Much Better?

I am still unclear about the core point here-- why higher value of European cards. Supply and demand, yes, makes sense. But the fact that the cards were chip and pin (EMV) should make them less valuable because that demonstrably reduces the ability to use them fraudulently. Did the author mean that the chip and pin cards could be used in a country where EMV is not implemented--the US--and this mis-match make it easier to us them since the issuing banks may not have as robust anti-fraud controls as non-EMV banks because they assumed EMV would do the fraud prevention for them Read more...
Two possible reasons that I can think of and have seen in the past - 1) Cards issued by European banks when used online cross border don't usually support AVS checks. So, when a European card is used with a billing address that's in the US, an ecom merchant wouldn't necessarily know that the shipping zip code doesn't match the billing code. 2) Also, in offline chip countries the card determines whether or not a transaction is approved, not the issuer. In my experience, European issuers haven't developed the same checks on authorization requests as US issuers. So, these cards might be more valuable because they are more likely to get approved. Read more...
A smart card slot in terminals doesn't mean there is a reader or that the reader is activated. Then, activated reader or not, the U.S. processors don't have apps certified or ready to load into those terminals to accept and process smart card transactions just yet. Don't get your card(t) before the terminal (horse). Read more...
The marketplace does speak. More fraud capacity translates to higher value for the stolen data. Because nearly 100% of all US transactions are authorized online in real time, we have less fraud regardless of whether the card is Magstripe only or chip and PIn. Hence, $10 prices for US cards vs $25 for the European counterparts. Read more...
@David True. The European cards have both an EMV chip AND a mag stripe. Europeans may generally use the chip for their transactions, but the insecure stripe remains vulnerable to skimming, whether it be from a false front on an ATM or a dishonest waiter with a handheld skimmer. If their stripe is skimmed, the track data can still be cloned and used fraudulently in the United States. If European banks only detect fraud from 9-5 GMT, that might explain why American criminals prefer them over American bank issued cards, who have fraud detection in place 24x7. Read more...

StorefrontBacktalk
Our apologies. Due to legal and security copyright issues, we can't facilitate the printing of Premium Content. If you absolutely need a hard copy, please contact customer service.