What is PII (Personally Identifiable Information)?
Any data that can be used to identify a specific individual, including name, address, phone number, email, Social Security number, and biometric data.
PII is the core of what privacy law protects and what data breaches expose.
Categories
Direct identifiers (alone can identify someone):
- Full name
- Social Security number
- Driver's license number
- Passport number
- Biometric data
Quasi-identifiers (combined can identify someone):
- Date of birth
- ZIP code
- Gender
- Employer
- Job title
The Re-identification Problem
Research has shown that 87% of Americans can be uniquely identified by just three data points: ZIP code, date of birth, and gender. "Anonymous" data is rarely anonymous.
Protection
- Minimize the PII you share online
- Use aliases and alternate information where possible
- Monitor for data breaches involving your PII
- Consider data broker removal services for exposed PII
Related Terms
Data Minimization
A privacy principle that organizations should collect only the minimum amount of personal data necessary for a specific purpose, and retain it only as long as needed. This reduces privacy risks by limiting exposure in case of breaches or misuse.
GDPR
The General Data Protection Regulation is a comprehensive data protection law in the European Union that gives individuals control over their personal data. It establishes strict requirements for how organizations collect, process, store, and transfer personal information.
Pseudonymity
The state of using a consistent fake identity rather than your real name. Unlike anonymity, pseudonymity allows building reputation and history while protecting real-world identity from casual observers.
Have more questions?
Use our guided flow to get the right next privacy step for PII (Personally Identifiable Information).
Open Guided Flow