CIOs Consider Putting a Price Tag on Data

Figure out the dollar value of your information assets. Then you’ll know what the 'I' in CIO is really worth -- and how much to spend protecting it.

1 2 Page 2
Page 2 of 2

Siemens, who isn't involved in the Target case, says clients sometimes ask if they can buy insurance to protect some discrete piece of data or intellectual property. "The answer, generally, is 'no' because there's no real way to put a value on that," he says. "The process is so esoteric and speculative that the insurance industry is not willing to underwrite it."

Like a Beef By-Product

As technologies such as mobile apps, sensors and analytics come together to produce mountains of data, CIOs have the opportunity to lead discussions about how the information can be packaged as new products and services.

Making the business case in those conversations is different from justifying the cost of a new ERP system, says Barbara Wixom, a principal research scientist at MIT's Center for Information Systems Research. She is studying how companies monetize data in a digital economy.

Selling data or new products based on data "is a lot different from using it internally," Wixom says. CIOs have to think about valuation and pricing but also about packaging, customer service and a sales strategy. "All require investment and a vendor mentality," she says.

People should stop thinking of data as something inherently different from tangible products like soap or cars, says Forrester's Ferrara. Data is a by-product created and shed during a company's normal operations.

"This is no different from a company that processes beef to put steaks in the supermarket. They find the by-product of that process can be used for animal feed," he says.

For example, data from sensors built into refrigerators to improve the manufacturing process might also be sold to repair companies that want to target customers as their fridge's cooling coil or ice maker is about to go, he says. Innovation teams that include the CIO or other IT leaders can "take raw information and turn it into a product."

Hubbard contends that the CIO should have data scientists, even a chief data officer, on the technology team to supply quick, thorough data to support burgeoning information products. "You need the equivalent of an actuary in IT."

Kongara at American Family Insurance characterizes data as being "manufactured" and says some products are more valuable than others. Part of his job is to support efforts to create new revenue streams with various business units.

At the same time, his data management group works on perpetual problems, such as trying to find the definitive way to predict the lifetime value of a customer. Insurers, retailers and consumer packaged goods companies all chase this metric, combining many pieces of data via proprietary algorithms. The result is always an estimate, sometimes accurate and sometimes not. An incontrovertible number is "the holy grail in insurance companies," Kongara says. "People are searching for it still."

Dollars for Data

Many types of data already have a price--either in the free market or in the underworld

Putting a price tag on information isn't new. A classic example is the ticker data that flows from stock and futures markets. A 1905 Supreme Court ruling (Chicago Board of Trade v. Christie) gave financial exchanges the right to own and sell that proprietary data, a cash cow that can amount to 30 percent of an exchange's revenue, says Robert I. Webb, a professor of finance at the University of Virginia. A real-time feed of New York Stock Exchange stock prices for use by online media outlets, for instance, costs $25,000 per month.

All manner of personal and corporate data is for sale, from legitimate and black-market brokers alike. Quick-and-dirty Web research offers the following shopping list:

  • Individual criminal histories: $13.95
  • Database of U.S. physicians: $239.99
  • DNA test for tracing family history: $99
  • 4 million fresh email addresses: $75.95 per week
  • Major League Baseball game statistics feed: $1,900 per month
  • Consumer mailing list: 2.5 cents per record

While much of that data is inexpensive, the cost of a data breach is not: an average of $145 per record, according to Ponemon Institute. That can really add up if you lose millions of records.

There's a burgeoning underground market for stolen data, including a flood of purloined credit card numbers from the Target security breach that affected up to 110 million consumers. According to blog posts by cybercrime investigator Brian Krebs, the price of payment numbers stolen from Target ranges from $23.62 to $135 per card. He says the prices vary based on factors such as "the issuing bank, the type of card (debit or credit), how soon the card expires, and whether the card bears a special notation that often indicates a higher credit limit, such as a Platinum card."

-- Mitch Betts

Kim Nash is managing editor of CIO Magazine. Follow her on Twitter @knash99.

Follow everything from CIO.com on Twitter @CIOonline, Facebook, Google + and LinkedIn.

Copyright © 2014 IDG Communications, Inc.

1 2 Page 2
Page 2 of 2
7 secrets of successful remote IT teams