The IT dilemma: Balancing data privacy and personalization in customer experience
Trust is at odds with consumer expectations of personalization, according to new research. Here's how IT leaders are making sense of it.
Last updated November 20, 2023
Your phone buzzes with an email notification. Subject line: Important information about a recent security incident.
Sounds familiar, right? Unfortunately, security incidents are more and more common, which means many companies are leaning on trust to galvanize their customer relationships. Trust is the cornerstone of customer relationships, but in today’s changing data privacy and security landscape, it’s hard to earn and easy to lose.
Research shows that trust is at odds with consumer expectations of personalization
Companies and platforms collect more personal data than ever, and consumers expect this data to stay safe in the face of evolving security threats. Simultaneously, government and industry compliance standards are constantly developing. This makes it challenging to balance privacy and security while working to enhance the customer experience—even more so for companies in highly regulated sectors, companies handling lots of sensitive customer data, or companies following their own strict privacy and security standards.
Zendesk’s 2023 report, The IT Dilemma: Balancing Data Privacy and Personalization in Customer Experience, highlights these conflicting priorities. In the report, 66 percent of surveyed IT leaders say data privacy and protection regulations limit their personalization efforts significantly.
Despite these challenges, companies with the right tools and partners in place can thrive in this changing landscape, meeting their customers’ need for greater privacy and security while building greater customer trust and satisfaction along the way.
Learn more about Zendesk advanced data privacy and protection
In this report
Here are three ways businesses can proactively maintain customer trust amidst the changing data privacy sphere.
1. Remove personal data from customer conversations
Redacting personal data from customer conversations can be a critical first step in protecting customer privacy.
Customer conversations contain a wealth of information that can be used to personalize the customer experience—think details like purchase history or previously closed tickets. The key is determining which personal information is relevant and which information is not. This includes data like credit cards, social security numbers, and passwords from support conversations.
Once businesses know which personal information isn’t needed to deliver customer experiences, they can use redaction tools to selectively and permanently delete those details from customer conversations. With advances in AI, this process is becoming smarter and easier to automate.
2. Enable agents to access only the customer data they need
Redaction can help protect personal information that CX professionals don’t need access to, but what about the data they do need?
To provide personalized customer experiences, support agents need access to customer information. For example, to better understand a customer’s needs, they might search through past conversations for relevant insights.
The complexity here is that not all CX professionals require the same level of access to customer data. According to the information security principle of least privilege, CX team members should only be able to access the information they need to do their jobs effectively. If one team member relies on specific personal data to service customers while another agent does not, only the first agent should have access to that information.
Beyond maintaining access and permission controls, businesses can use advanced capabilities like data masking to surface or hide customer data based on employee role.
3. Delete outdated customer data your business no longer needs
Eventually, even the most relevant customer data becomes unnecessary for businesses to hold. Think of customer service data stored in platforms years after a service transaction was completed. For maximum customer privacy, this kind of outdated data should be deleted regularly. To do this, flexible tools to enforce data retention policies that delete the data they don’t need while keeping the data they do.
This is particularly crucial for businesses under data retention regulations, whereby personal data must be deleted if it’s no longer needed or if a customer requests its removal.
By enforcing data retention policies, businesses can stay on top of regional and industry-based regulations while keeping customer data safe. CX tools that allow businesses to customize where, when, and which data is deleted can accommodate this flexibility.
Learn more about data privacy and protection in CX
Building customer trust amidst a dynamic data privacy landscape can be a challenge. But with the right strategies and tools in place, businesses can deliver the most trusted customer experiences while safeguarding their business, elevating customer privacy, and strengthening data security at scale. Discover additional insights in our free report.