When storing Personally Identifiable Information (PII) about individuals there are many concerns that can be had about how, who, and why this information is being stored. In a world where nearly all of our private information lives somewhere on a server, there is much to take into consideration to protect yourself. First and foremost, consent of data collection and transparency are of the utmost importance. For data collection to fall into the category of being ethical, users should be fully aware of what exactly they are consenting to. This points to a company’s responsibility and ethical duty to be clear and concise on their data collection practices, which leads us to our second ethical issue, the over collection and misuse of data. Ethically speaking, a company has a duty to only collect the bare minimum needed data for operation and to discard the data when completed rather than storing/selling the data, especially for Personally Identifiable Information. The third issue that reveals itself when storing PII is the security and protection of the data. Employers must have strict security protocols and cyber security plans as well that is consistently updated and tested. Employees should be trained and retrained regularly to ensure the adhering of security protocols, which includes limiting access to need to know only and preventing unauthorized access. Proper cyber security and data protection regulations protect the company, the user, and protect the integrity of the data. The integrity of the data is the fourth ethical issue that can arise. Restricting access to only those who absolutely need access as well as safeguarding PII from outside threats and malicious individuals leads to accurate information being kept. All of these issues lead back to relying on a company to act ethically in their practices and not skip important cyber security implementation.