My own idea is to solve it at the server or workstation before the data leaves and travels over the Internet. Which means certain data would never been seen because the computer calling the data is either not local, or is not showing the right computer name, similar etc. But they can still call up certain data, but only be permitted to the data perhaps in a a certain size allocated. Basically only local has access to large chunks, or multiple users. I believe this would have to be programmed and there would be different types to handle different type of businesses. Or work in the same manner as like maybe an anti-virus software does, or firewall. Checking to see what computer is asking for the data etc.
I am not saying this will work, I am just saying that over the past years many have said it needs to be secure and having the general public to secure their own personal information will not work in a society that allows anyone to store your personal information. Banks, Healthcare, credit cards, your personal information is everywhere. So I believe the fix is in the Servers and workstations on how they handle this personal information.
Link to Original Source