What is PII? 

Personally-Identifying Information (PII) is any information that can identify an individual when used alone or with other relevant data. PII contains direct identifiers that can identify a person uniquely or quasi-identifiers that can be combined with other data to uniquely identify an individual. Sensitive PII must be encrypted when transmitted or stored, while non-sensitive PII can be transmitted or stored unencrypted.

Why is PII important?

Enterprises use the concept of PII to understand which data they store, process, and manage that identifies people. They use it to understand which PII carries additional responsibility, security requirements, and in some cases, legal or compliance requirements (such as HIPPA, PIPEDA, and GDPR.)