[gnfurlong]

This doesn't make sense to me. Wouldn't that make every id that is one to one or one to many with a customer PII? That seems absurd.

A user alias on some random site would meet that criteria, assuming they took name/address/etc when you signed up.

Unless PII has some other significance than I'm interpretting it to have?

[freeone3000]

Right. So you'd have to have a business case for the user to have a persistent login, if you want to offer login functionality, beyond simply "track the user to see what they want". It's ridiculous.

[mark_edward]

Sounds good to me.

Screw you data vampires.