Risk... in the most obscure places
I read an article yesterday about various stores and markets requiring a state-issued driver's license or identification as proof of identification for returns. When the return is made, identification is presented to the vendor, and it is scanned into their system to be stored with the transaction. On the surface, this seems reasonable, except for scanning and *storing* the identification; now it is probably not such a good idea. The vendor is now collecting more information than we would probably like to give, such as name, address, drivers license#, and other details, depending on the issuing state.
The need for identification, whether physical or virtual, is real. Stores and markets most likely (not getting into the legal here) have some right to ask for a form of identification when conducting certain transactions, and I agree with that requirement. 30 years ago, when using a bank check to make a purchase, vendors would require a valid credit card, which they would write on the check. (youch) The capture and storage of information, of which the consumer may not even be fully appraised of, is the issue here.
So we are here today to discuss ways we can do this better. My initial thought was that a scan of the identification into the system, to read what is magnetically written, and display it on a screen for the merchant. Compare that to what is printed and the photograph, and document the verification of ID was valid. We still trust employees that work for us, so let’s leverage that. In this we have a solution in which no information is stored, only displayed for the merchant to verify against what is printed.
I open the floor to any comments, questions, queries, quibbles, complaints, or concerns. Mostly I am hoping for solutions thought.
tony d0t carothers --gmail
Comments
Anonymous
Sep 15th 2015
9 years ago
Great comments, and thanx for supporting the ISC.
Anonymous
Sep 15th 2015
9 years ago
Anonymous
Sep 15th 2015
9 years ago
In the case of collecting the data when a return takes place may have fraud detection and response implications.
I am not an expert in how retail operations deal with product returns, but the act of collecting the drivers license information seems burdensome when an accurate receipt is provided as evidence at the moment the product is returned to the store. There might be a real reason for collecting that information.
IMHO, If there is a justifiable reason for collecting the drivers license information for the return of a product:
- There should be publicly available vendor attestation as to why the information is collected, how it will be used, and how long it will be retained.
- There should be publicly available vendor attestation as to the expectation of privacy one can have and vendor commitments to protecting the data while they hold and use it.
Anonymous
Sep 15th 2015
9 years ago
Anonymous
Sep 15th 2015
9 years ago
Anonymous
Sep 15th 2015
9 years ago
The exception is when a credit card was used for payment, then the same credit card must be provided for the refund. You can't make a purchase on one card, and get the money refunded to a different card.
Notwithstanding, it certainly isn't standard practice here to allow your photo ID to be copied and retained in order to return a faulty item to a shop.
Anonymous
Sep 16th 2015
9 years ago
I also live in Ontario, Canada and while this is true we are asked to provide name, address, and phone number when returning an item. How many people just give valid information that is then stored who knows where, and possibly attached to the credit card number that was used to make the purchase.
Anonymous
Sep 16th 2015
9 years ago