How to protect customers' private data