Target joins the beacon bandwagon with trial in 50 stores

Privacy advocates worry collecting identities and locations leaves customers vulnerable

Target, the nation's second-largest discount chain, is testing beacon technology in 50 of its stores.

The retailer joins a growing number of retailers that hope to attract customers with timely deals sent to their smartphones and smartwatches on products based on their location.

Growth in the use of beacons with mobile devices is seen by retailers as a way to improve customer loyalty and, ultimately, sales.

At the same time, use of beacons worries privacy experts, who say that too much personal data is being collected and stored by retailers or third parties. That data, they said, could become vulnerable to hackers.

"Many people are not concerned about the personal tracking data being acquired everywhere we go," said Jack Gold, an analyst at J. Gold Associates. "Many of us have become numb to all the data gathered about us, and it gets worse every day."

The use of beacons will only add to the growing pool of personal data available to hackers, analysts said.

"The privacy issue is a key issue for consumers," Gold added. "What if you are in the birth control section of the pharmacy or looking for hair dye?" That's the kind of personal data that could prove embarrassing or even harmful if somehow hacked and made available to an employer, insurance company or others.

[ Stay up to date on tech news with Computerworld's daily newsletters. ]

The primary focus of Target's announcement Wednesday was on ways that customers can improve their in-store experience by connecting to the egg-sized beacons that are spread around the store. The beacons use Bluetooth technology to connect to the customer's device via an updated Target app. The app is available now for iPhones and is coming soon to Android devices.

The app comes with a "Target Run" home page, which acts like a social media site's newsfeed to provide updated product recommendations or coupons based on a customer's location.

The online announcement doesn't mention how Target plans to use the customer data that it receives either through the app or in-store. However, the free app in the AppStore includes a lengthy privacy policy, available in a scroll-down, that is written in plain English and appears (based on a Computerworld analysis) to be state-of-the-art for customer data privacy. The policy includes how Target collects, uses, shares and protects personal data. The policy is also available on the Target website without the need to download the app.

"Our privacy policy speaks for itself," Target spokesman Eddie Baeb said in an email to Computerworld. "We take these matters very seriously and keep them in mind at all times when we're developing new digital services like the 'Target Run' experience or making updates to our apps and online offerings."

Target app's privacy policy in brief

Use of the app, including opt-in tracking of a user's location inside its stores and elsewhere, implies consent to allow Target to use personal information that it says "may" be shared with third parties, such as companies outside of Target, for their marketing purposes directed at the app user.

The personal information collected through use of the Target app, according to the privacy policy, includes: the user's name, mailing address, email address, phone number, credit/debit number, precise geo-location (with the user's consent), the mobile application password, mobile device information (model, OS version, unique device identifiers and mobile network information). Target also will collect how users use the mobile app.

"If you choose not to provide personal information, we may not be able to provide you with requested products, services or information," the Target app privacy policy notes.

When a user turns on location sharing in the app, Target will use GPS and Wi-Fi outside its stores and beacons and Bluetooth, LED light chip and other technologies inside its store that "permit Target to do things like find nearby products for you, get you real-time deals and auto-sort your shopping list."

The policy also describes various opt-out capabilities in the app, including to opt-out of geo-location and in-store location. There's also the ability to uninstall the entire app, but Target notes that if a user uninstalls the app, the Target unique identifier associated with the user's device will still be stored. If the user re-installs the app on the same device, Target will be able to re-associate the identifier with previous transactions.

In a recent update to the app, Target includes in the privacy policy information a protection for California residents who have the right to see the categories of personal information that Target has shared with third parties for their marketing purposes.

Target also says it will retain a customer's information as long as the application is in use "and for a reasonable time thereafter."

Target's privacy policy also says, like many other retail app privacy policies, that it will use industry standard methods to protect private information. It adds: "However, no e-commerce solution, website, database of system is completely secure or 'hacker proof.' You are responsible for taking reasonable steps to protect your personal information against unauthorized disclosure or mis-use."

Reality check: Are beacons vulnerable to attack?

It is highly unlikely beacons will be hacked directly, any more than individual smartphones or smartwatches, analysts say. The main concern about data gathered by retailers through beacons or directly from smartphone apps is that the data will be stored by various parties on servers that are then vulnerable to attack.

To limit the risk of hacks, privacy advocates say it is important for consumers to be able to track how their data is shared or sold to other parties. Consumers also should be able to delete their own data.

With the Target app and many others used on smartphones and smartwatches, only California residents have a minimal right to see categories of information being shared by Target. Also, the Target app, as do many others, says it will keep personal data for a "reasonable time," which is undefined. The privacy policies in many apps don't specify how long they will keep data. The Electronic Privacy Information Center says the length of time that data is stored should be defined in a company's privacy policy, with the length of time the data is held kept to a minimum.

A growing number of privacy advocates also say it's time to consider legislation that gives a user the right to demand deletion of all of his or her personal data from a company's data store and that of its third-party partners. Target partly meets one important criteria asserted by privacy advocate Irina Raicu, director of Internet ethics at the Markkula Center for Applied Ethics at Santa Clara University. Raicu believes that users deserve clear information about how their personal information will be used, and Target does at least provide an outline for how personal data is used.

Even so, analysts said there is widespread apathy about the risks of sharing of personal information. Granting a retailer or app developer the right to know your location and other personal information is "really scary," IDC analyst Ramon Llamas said recently. "It's incredibly problematic."

The apathy comes partly because users don't see a potential risk and want to reap the rewards of obtaining in-store coupons or special offers. "It's about risk versus reward," Gold said. "It's what you get in return for exposing yourself to the data miners."

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments

Latest Videos

Conversations over a cuppa with CMO: Microsoft's Pip Arthur

​In this latest episode of our conversations over a cuppa with CMO, we catch up with the delightful Pip Arthur, Microsoft Australia's chief marketing officer and communications director, to talk about thinking differently, delivering on B2B connection in the crisis, brand purpose and marketing transformation.

More Videos

Great content and well explained. Everything you need to know about Digital Design, this article has got you covered. You may also check ...

Ryota Miyagi

Why the art of human-centred design has become a vital CX tool

Read more

Interested in virtual events? If you are looking for an amazing virtual booth, this is definitely worth checking https://virtualbooth.ad...

Cecille Pabon

Report: Covid effect sees digital events on the rise long-term

Read more

Thank you so much for sharing such an informative article. It’s really impressive.Click Here & Create Status and share with family

Sanwataram

Predictions: 14 digital marketing predictions for 2021

Read more

Nice!https://www.live-radio-onli...

OmiljeniRadio RadioStanice Uzi

Google+ and Blogger cozy up with new comment system

Read more

Awesome and well written article. The examples and elements are good and valuable for all brand identity designs. Speaking of awesome, ch...

Ryota Miyagi

Why customer trust is more vital to brand survival than it's ever been

Read more

Blog Posts

A Brand for social justice

In 2020, brands did something they’d never done before: They spoke up about race.

Dipanjan Chatterjee and Xiaofeng Wang

VP and principal analyst and senior analyst, Forrester

Determining our Humanity

‘Business as unusual’ is a term my organisation has adopted to describe the professional aftermath of COVID-19 and the rest of the tragic events this year. Social distancing, perspex screens at counters and masks in all manner of situations have introduced us to a world we were never familiar with. But, as we keep being reminded, this is the new normal. This is the world we created. Yet we also have the opportunity to create something else.

Katja Forbes

Managing director of Designit, Australia and New Zealand

Should your business go back to the future?

In times of uncertainty, people gravitate towards the familiar. How can businesses capitalise on this to overcome the recessionary conditions brought on by COVID? Craig Flanders explains.

Craig Flanders

CEO, Spinach

Sign in