The DOBlog

Tag: changing-models-of-business

  • Final post and update on IBTS issues

    OK. This is (hopefully) my final post on the IBTS issues. I may post their response to my queries about why I received a letter and why my data was in New York. I may not. So here we go..

    First off, courtesy of a source who enquired about the investigation, the Data Protection Commissioner has finished their investigation and the IBTS seems to have done everything as correct as they could, in the eyes of the DPC with regard to managing risk and tending to the security of the data. The issue of why the data was not anonymised seems to be dealt with on the grounds that the fields with personal data could not be isolated in the log files. The DPC finding was that the data provided was not excessive in the circumstances.

    [Update: Here’s a link to the Data Protection Commissioner’s report. ]

    This suggests to me that the log files effectively amounted to long strings of text which would have needed to be parsed to extract given name/family name/telephone number/address details, or else the fields in the log tables are named strangely and unintuitively (not as uncommon as you might think) and the IBTS does not have a mapping of the fields to the data that they contain.

    In either case, parsing software is not that expensive (in the grand scheme of things) and a wide array of data quality tools provide very powerful parsing capabilities at moderate costs. I think of Informatica’s Data Quality Workbench (a product originally developed in Ireland), Trillium Software’s offerings or the nice tools from Datanomic.

    Many of these tools (or others from similar vendors) can also help identify the type of data in fields so that organisations can identify what information they have where in their systems. “Ah, field x_system_operator_label actually has names in it!… now what?”.

    If the log files effectively contained totally unintelligible data, one would need to ask what the value of it for testing would be, unless the project involved the parsing of this data in some way to make it ‘useable’? As such, one must assume that there was some inherent structure/pattern to the data that information quality tools would be able to interpret.

    Given that according to the DPC the NYBC were selected after a public tender process to provide a data extraction tool this would suggest that there was some structure to the data that could be interpreted. It also (for me) raises the question as to whether any data had been extracted in a structured format from the log files?

    Also the “the data is secure because we couldn’t figure out where it was in the file so no-one else will” defence is not the strongest plank to stand on. Using any of the tools described above (or similar ones that exist in the open source space, or can be assembled from tools such as Python or TCL/TK or put together in JAVA) it would be possible to parse out key data from a string of text without a lot of ‘technical’ expertise (Ok, if you are ‘home rolling’ a solution using TCL or Python you’d need to be up to speed on techie things, but not that much). Some context data might be needed (such as a list of possible firstnames and a list of lastnames, but that type of data is relatively easy to put together. Of course, it would need to be considered worth the effort and the laptop itself was probably worth more than irish data would be to a NYC criminal.

    The response from the DPC that I’ve seen doesn’t address the question of whether NYBC failed to act in a manner consistent with their duty of care by letting the data out of a controlled environment (it looks like there was a near blind reliance on the security of the encryption). However, that is more a fault of the NYBC than the IBTS… I suspect more attention will be paid to physical control of data issues in future. While the EU model contract arrangements regarding encryption are all well and good, sometimes it serves to exceed the minimum standards set.

    The other part of this post relates to the letter template that Fitz kindly offered to put together for visitors here. Fitz lives over at http://tugofwar.spaces.live.com if anyone is interested. I’ve gussied up the text he posted elsewhere on this site into a word doc for download ==> Template Letter.

    Fitz invites people to take this letter as a starting point and edit it as they see fit. My suggestion is to edit it to reflect an accurate statement of your situation. For example… if you haven’t received a letter from the IBTS then just jump to the end and request a copy of your personal data from the IBTS (it will cost you a few quid to get it), if you haven’t phoned their help-line don’t mention it in the letter etc…. keep it real to you rather than looking like a totally formulaic letter.

    On a lighter note, a friend of mine has received multiple letters from the Road Safety Authority telling him he’s missed his driving test and will now forfeit his fee. Thing is, he passed his test three years ago. Which begs the question (apart from the question of why they are sending him letters now)… why the RSA still has his application details given that data should only be retained for as long as it is required for the stated purpose for which it was collected? And why have the RSA failed to maintain the information accurately (it is wrong in at least one significant way).

  • Oh (d)Hell, here we go again…

    So, prompt and efficient, Dell Post-Sales Customer Support shipped me the graphics card for my laptop -the one they should have put in while it was still in the factory. It arrived this morning at 11:00am as promised. It was shipped from their factory in Limerick – a city and County I know well. About 20 minutes before the courier arrived I’d had a call from my support team contact in Dell to set up the technician appointment to come out and finish building my laptop.

    The sun was shining. My dentist hadn’t come over all Marathon Man on me. I am starting a short holiday with my wife… all was well with the world.

    Until I opened the package. To find that it included a graphics card, which I assume is a 256MB card. So far so good…

    … it is a card for a Desktop machine not a laptop. It will not fit the computer I have. It is as useful to me as a chocolate fireguard, an ice teapot or a kosher sausage roll. I expect a technician to call me soon to confirm their appointment. I will only be able to confirm my disappointment.

    So what information might Dell in Limerick have had available to them to ship the correct thing?

    1. They might have had the asset tag of the laptop, from which the model and configuration details could be determined.
    2. They should have had the model of the laptop
    3. Perhaps they had details of the complaint, including the original order number and my customer number

    Any of those items of data would have enabled someone picking the components out of the storage bin to say “We want a graphics card (check) for an Inspiron Laptop (oh… wrong thing)”.

    If that information was not available to the people in Limerick, then it is inevitable that a mix up would happen. In this Information Age almost all processes that we run in business or that we encounter in life require complete, consistent, accurate and timely information to run as we expect. At assembly, there was information available that my laptop should have had 256MB video RAM. The quality failure in that instance was that that information was not referred to to make sure that the real world thing that it described met that expectation.

    Once the support people understood the problem, a graphics card was dispatched to fix the issue. However, due either to unavailable information (did the request to ship the replacement card specify the model of the card and that it was for a laptop?) inaccurate or inconsistent information (does the pick-list master data show that the desktop card I’ve received is the correct card for my laptop?), or inaccurate interpretation of the information, I wound up with the wrong card – a solution to my problem that does not solve the problem.

    This is a significant cost issue for Dell. It has to be. So far, to get my laptop to the specification I actually ordered it, they’ve incurred the cost of an additional graphics card (estimate €100) plus the cost of the courier (estimate €30 for overnight delivery) plus the cost of the support call center person (estimate €10 so far) plus the cost of the technician (estimate €120 based on ex-warranty call out charges) and so far it has cost Dell an additional €260 (my estimate) to perpetuate a screw up. If Dell can ship me the correct graphics card before the technician arrives then their cost will only be around €390.

    To put that in perspective… that is 25.2% of the cost of the laptop I purchased so unless Dell are operating at 30% margins on their business (in which case they have some leg room their competitors don’t or their machines are over-priced) they have lost money on my purchase. A fortnight in and already I’m a below-zero customer in terms of my lifetime value to Dell (and that’s before you factor in that I might not buy another Dell given the difficulties I’m having).

    Even with the cost of finance over 3 years to me (god bless the never-never finance), Dell are just about breaking even on me as a customer. Based on my estimates of course. And assuming they get it right before the technician arrives to try and fit a square peg (desktop graphics card) in a round hole (laptop). If Dell’s costs for hardware are 50% of retail, they are still looking at around 20% ‘evaporation’ of their margins… that is an unsustainable business overhead that seems to be accepted as the ‘cost of doing business’.

    Assuming Dell shipped 1000 laptops last week and 10% of them were mis-assembled and have had similar issues with replacement components, Dell could be burning 100 X €390 = €39,000 a week in avoidable scrap and rework. That equates, in my industry, to around 40 to 45 full-time-equivalent staff in ‘clerical’ roles. The cost of non-quality is easy to measure. That’s a direct cost to the Business that is avoidable. It’s just harder to measure than headcount and not as easy to cut. You can’t fire your data.

    The root cause of all of this cost is the quality of information and the quality of the culture in which that information is used… if the metric for assembly teams is how fast something is shipped versus how quickly the right thing is shipped then corners will get cut at 16:45 on a Friday to get that product boxed and out to shipping before the shift ends. If the customer complaint follow ups don’t have sufficient information about the product that is being complained about then screw ups are perpetuated.

    Dell are feeling the analysts pinch on the short term numbers (quarter on quarter growth and profits). In my opinion, it is time to bite the bullet and look at the root causes of their information supply chain problems before they cut head count – because who knows what other information ills headcount might be masking. They need to build quality in, both in terms of the product and in terms of their information management. They need to do it now. Cutting headcount will fix the bottom line. For now. Fixing these fundamentals fixes the bottom line for ever – while increasing efficiency and (perhaps) avoiding the need to prune back headcount as aggressively as currently forecast.

    The management approaches needed aren’t rocket science and they aren’t an unproven quantity. Neither is the failure of a business because it costs them their profit margin to inspect defects out of a product after it has shipped. Hopefully some Dell manager will happen across this blog post and might put the simple Excel spreadsheet together that shows the true cost to Dell of non-quality information and poor management of information. Perhaps that might prompt some thinking about how best to meet market analyst expectations in a sustainable way.

    Failing that, Dell will inevitably enter a head-count reduction death-spiral of managing by the easy numbers which is difficult – if not impossible – to pull out of.

  • Windows Vista and my new Dell – some thoughts

    Blogging this in some frustration.

    Ordered a new Dell a few weeks back because my previous “Aldi-Special” (a ‘Gericom’ brand) had died.

    As I was going to be sticking the new purchase on the never-never (finance) I decided to pimp my ride a bit and ordered the best spec I could get for the price I’d paid 2 years ago for the venerable Aldi-special. Ever the bastion of customer choice, Dell gave me the option to have either Windows Vista or Windows VISTA, depending on what typeface I preferred.

    Spec I ordered was 2.0ghz dual core centrino processor, 2ghz ram, 256mb graphics and a hard-drive the size of Wyoming. After some kerfuffle with Dell’s systems losing my order somewhere on its way to Finance, the paperwork was processed and the machine shipped.

    First problem – the courier who was delivering the goods point to point decided that, as I wasn’t in, he’d deliver the €1000+ of computer to a neighbour. I wouldn’t have minded that except I had specifically told him NOT to do that as I wanted to inspect the goods when they arrived so I could be sure that there was no problems or anything missing. Courier obviously felt that doing the job he was being paid to do (ensuring that the purchaser of the expensive things actually got them) was too much hassle and dumped them on a neighbour. I found out the next day (a Friday), when after sitting in for the morning I rang the courier to see when he would (as per my instructions) deliver the goods to me.

    Suffice it to say that I was unimpressed.

    Laptop seemed to be working fine for the first few days. Vista is beautiful to work with, in my opinion. But you do need the extra oomph of a good processor and ram and a top notch video card with a chunk of V-Ram (more on that in a mo). I used it last week for a presentation in Dublin – worked fine. Due to commuting it stayed home untouched for most of this week however.

    One thing however niggled almost from Day 1… Roxio software that Dell bundled with the laptop contain a driver (which I assume is a CD rom driver) that Vista blocks as it might make the machine unstable. No driver updates nor patches can be found, even though it seems that a similar driver issue affected Inspiron laptops under XP prior to Christmas.

    Another thing that niggles now is that there appears to be an on-board music critic who decided that my taste in blues/jazz/funk was not suited to this laptop and has managed to switch off the ability of the DVD drive to read any CD media – even the CDROM driver disk that came shipped with the laptop. This kicked in yesterday midway through a listen to a Jools Holland CD my wife got me for my birthday. Also spurned are The Blues Brothers (cheesy but good), Clapton, and Rory Gallagher.

    I decided to go on a trawl of the system to identify where the music critic resided. I uninstalled the DVD drive drivers and rebooted the system (to see if that would evict The Critic). No joy. As my machine rebooted for the second cycle of uninstall/reinstall I noticed that the BIOS was registering my Video RAM at 128MB… “hang on a minute”, said me as I reached for my copy of the order specification attached to my finance agreement, “I ordered 256MB Ram”.

    Now the installed video Ram is not easy to identify by a physical inspection of the machine. Indeed, unless you actually specifically go looking to find the details under the Display Settings of Vista then you’ll never know if you have 128MB or 256MB – not unless you notice a really severe hang on your machine. Certainly it is not something that the technically unaware would automatically think of checking straight away.

    Annnnnnyyyyyhhhhhooooooo…… now I had 3 issues with Dell.

    1. Roxio Drivers not working under Vista (as an Information Quality aside, the error message doesn’t refer to Roxio but to Sonic Systems, who it turns out own Roxio)
    2. DVD no readie de CD – (perhaps this is related to 1 above?)
    3. The sloppy f*ckers hadn’t built my machine to the spec I’d ordered and I probably would never have noticed if the other stuff hadn’t started going wrong

    So today (a Saturday) I tried to use Dell’s on-line Customer Service (because their Consumer Call centre doesn’t work Saturdays.. Why not?). Apparently Dell’s email process into Customer Service doesn’t work on Saturdays either. Nor does the email process to Technical support. Apparently their email system is unavailable. Also Dell’s support doesn’t have VISTA listed as an Operating System on their drop down list… so how do I get support for VISTA?

    Maybe they have a Literary Critic installed who has tired of reading cranky missives in poorly phrased English?

    To summarise:

    1. The Courier failed to meet expectation as he didn’t follow instructions and did not provide me with information as to what he had done with my goods. Given that the evidence of delivery is the signature he captured I could have been left in an awkward position. Couriers are used to ensure delivery to the correct address and person, particularly where the goods are valuable. Otherwise, we’d all just use the post, which is very reliable.
    2. Vista meets expectation – it looks good but has some issues. Hopefully these will shake out as the adoption rate increases
    3. Roxio’s software does not WORK under Vista. Dell should have tested it before bundling it and if there was an issue under XP they should have made sure a patch was available that works under VISTA (the XP patch can’t be installed as it doesn’t recognise Vista as an OS).
    4. The product delivered to me does not meet expectation – Dell’s post-build quality control obviously didn’t catch that the Graphics card installed is not the Graphics Card ordered. Why?

    Of course, I’d tell them that if their email systems were available.

    The brother bought a laptop in Lidl yesterday morning. It has exactly what was on the specification sheet. It differs only slightly in terms of RAM and CPU speed from mine. It was nearly half the price of mine (it uses an AMD processor, I have an Intel). The brother’s laptop has met, if not exceeded his expectations. I’m left fuming on a Saturday because mine falls short of my expectations.

    Lidl or Dell – who has better Quality when it comes to laptops?