Skip to main content

How an Australian utilities provider achieved privacy compliance with Enterprise Recon

Utilities
Industry

Utilities

Challenge

Following a data breach, an Australian utility provider needed a way to identify and secure customers’ personal data (PII).

Results

With Enterprise Recon deployed, the utility company could identify and manage personal information and credit card data wherever it was stored in their systems, enabling them to achieve compliance with PCI DSS and the Australian Privacy Act.

Key Product

Enterprise Recon PII, Enterprise Recon PCI

Icon

Cost of a data breach industrial 2025

$5.00m

Icon

of all cyber-attacks target utiliy companies

11%

Icon

Ransomware surge against utilities 2024

42%

What our customers are saying

Corporations Have Data Stored In So Many Locations That It Is Impossible To Manually Look For Information. With The Data Security Tool From Ground Labs, It Makes The Process Easy And Simple For Organizations To Search For Data That Is Stored In A Non-secure Manner And Take Corrective Actions To Remediate It And Secure The Data.

Ajay Unni

CEO

What our customers are saying

Enterprise Recon PII provides our team with centralized management of our data discovery process, allowing us to manage all scans from a single location without having to physically go to each and every machine to install and scan. This has created greater awareness of how and where we store data, enabling us to stay compliant with a variety of privacy regulations.

Nurettin Akhan

Manager, Cloud Services Systems

What our customers are saying

Enterprise Recon PII provides our team with centralized management of our data discovery process, allowing us to manage all scans from a single location without having to physically go to each and every machine to install and scan. This has created greater awareness of how and where we store data, enabling us to stay compliant with a variety of privacy regulations.

Nurettin Akhan

Manager, Cloud Services Systems

70%

Reduction in the time data import tasks take

Reduction in the time data import tasks take

100%

Success rate for customers using Flatfile

Success rate for customers using Flatfile

Utilities

The utilities sector has always been central to society, part of national critical infrastructure and providing essential services that keep homes and businesses running smoothly.

Utility companies are increasingly collecting and sharing vast amounts of customer data, including account details, billing information and usage data.

Customers rely on these businesses to safeguard their data, ensuring privacy and security while maintaining the seamless delivery of essential services.

Industry

The challenge

A utility provider managing data for hundreds of thousands of residents

The company provides drinking water in Australia as well as collects and treats sewage. As a government-owned entity servicing a region of over 500,000 people, the utility company is responsible for a large volume of personally identifiable information (PII) and payment card industry (PCI) data, including credit card numbers.

After suffering a data breach – both a major issue for the customers and a reputational problem for the brand – the utility company began searching for a solution to help it identify where its customers’ personal information (PII) and payments data was being stored.

The journey

The search for a PCI DSS compliance solution

With millions of customers, the company needed urgent help achieving compliance with Payment Card Industry Data Security Standard (PCI DSS) and to address security failings that lead to the data breach.

PCI DSS compliance is mandatory for businesses handling credit card numbers due to a heightened number of data breaches, to protect customers from credit card fraud. Hackers are highly motivated to steal credit card data. If they gain access to sensitive data including primary account numbers, cardholder names and authentication codes, hackers can impersonate the cardholder, use the card to make purchases and even steal the cardholder’s identity.

In addition, if a data breach occurs again and hackers gain access to additional customer PII, this utility provider could suffer further financial and reputational burdens. Customers lose trust in businesses after data breaches, and the costs of this add up.

To protect sensitive data and maintain customer trust, the utility provider needed a solution to help it accurately, quickly and easily identify where PII and PCI data was stored, enabling the company to remediate and protect the sensitive data before any future compromise.

The company turned to Ground Labs for help scanning and identifying PII and cardholder data across its network.

assetsV2_qEhQFVDGaftloTLHHbRz_asset 1-1

The solution

Ground Labs’ Enterprise Recon helps discover sensitive data across the network

Because this utility company handles such a high volume of personal information, the team knew it had a significant challenge ahead to find where all that data was being stored. It decided to partner with Ground Labs and now relies on award-winning Enterprise Recon to maintain ongoing awareness of where sensitive data is stored.

The company uses Enterprise Recon PII and Enterprise Recon PCI to find where credit card numbers and PII are stored within both structured and unstructured data sources, including files, databases, emails, cloud, big data and more. After scanning, Enterprise Recon allows the team to view and analyze where sensitive data resides and immediately contact data and system owners to take action.

Ultimately, Enterprise Recon provides a blueprint of the storage locations hosting PII and payments information across the organization, allowing the company to ensure that it is not storing any sensitive data unnecessarily, and that it is storing essential data securely to protect its customers.

Enterprise Recon identified millions of unsecured credit card data and personal information across the network.

After beginning the scanning process with Ground Labs’ Enterprise Recon, the utility provider identified millions of instances of customer credit card and PII information across its network. Enterprise Recon’s delegated remediation feature enabled the airline to assign multiple teams to address the risk, supported by its in-built capabilities to mask, encrypt, quarantine and delete data.

check mark

Ready to get started?

Talk to one of our experts to review your results and discover how Ground Labs can help you take control of your data.