The concept of Personally Identifiable Information (PII) has become prevalent as Information Technology and the internet have made collecting PII easy through breaches of internet security, network security, and web browser security. This has led to a profitable market in collecting and reselling PII. Also, PII can be exploited by criminals to stalk or steal the identity of a person, or to aid in the planning of criminal acts.

As a response to these threats, many website privacy policies specifically address the gathering of PII. Rather than a quarterly or annual exercise, daily data collection and continued analysis is key to finding, locating, and securing this data on an ongoing basis. Gray Matters Technology Services employs CMMI Level 3 process methods to perform effective analysis around the business and data, and to better secure sensitive data points throughout the life-cycle of each project.