The Industry's Leading Source For F&I, Sales And Technology

Compliance

NADA Data Security Debate Ends in No Decision

April 2007, F&I and Showroom - Feature

by Greg Arroyo

It was fitting that the National Automobile Dealers Association (NADA)’s annual show be called the “Main Event,” as both sides of the data security debate squared off in a testy exchange that left many questions unanswered.

 

What was clear is Reynolds and Reynolds is not about to budge on its hard-line stance of guarding access to its customers’ dealer management systems, with Vice Chairman Fin O’Neil saying “the debate so far has been too simplistic.

 

“Like it or not, we can’t take a libertarian position on data security,” said O’Neil. “We have an obligation — and a responsibility — to partner with dealers to help keep their data and their DMS safe, secure and in compliance with the best industry practices.”

Opponents fired back, and said the discussion simply comes down to a dealer’s data being a dealer’s data. Allan Stejskal, president of Open Secure Access (OSA) a 30-member coalition that hopes to create safeguards for the free flow of dealer data — said he hoped Reynolds would have provided more information about its announced plans to shut off dealership modems, which the company uses to upload software updates. The modems are also used by third-party vendors to gain access to a dealer’s DMS.

 

“Reynolds, as far as I know, has not come out with a definite statement of what its strategy is,” said Stejskal. “Bob Brockman (Reynolds’ new chairman) made a number of statements around security and around the company’s position, but I don’t think they came out with a, ‘This is our position.’”

 

The NADA and the American International Automobile Dealers Association also weighed in with a joint statement of their own. The statement said dealers, not vendors, should control who accesses and extracts their data.

 

The data-security debate began simmering in January after a report from an industry publication detailed how Honda asked its dealers last year to allow a software vendor, called Digital Motorworks (a subsidiary of ADP), to extract daily service parts orders. The automaker’s request, however, put dealers in direct violation of Reynolds’ dealer contract rules.

 

Brockman said in a Feb. 19 Automotive News article that Honda and Reynolds had yet to come to an agreement, and said Digital Motorworks was unhappy with the price Reynolds charges for access to its DMS solution. Reynolds, which reportedly certifies third-party vendors at an estimated cost of $20,000, referred the magazine to O’Neil’s posted comments on the company’s Web site.

 

Most NADA show attendees, however, were more enthused about the innovations on display, but did have the debate in the back of their minds.

 

“It’s technology overload,” said Diana Pfeiffer of Alaska Sales and Services, Anchorage, Alaska. “There’s a lot of good stuff here at the show.” Pfeiffer said she’s in a wait-and-see mode in regards to the data security debate.

 

One-Stop-Shop Solutions

 

Walking through the DealerTrack booth, David Kelly, director of finance operations for Easterns Automotive, Reston, Va., liked the one-stop approach companies touted at the show.

 

“My main focus was on technology at NADA, and both DealerTrack and Reynolds are starting to turn the corner and produce some really useful tools,” he said. “There are several companies out there that have great systems in regard to menu selling, e-contracting, data security, data storage, etc., but all necessitate a new system and process. And for a company our size, that’s quite an undertaking.”

 

With Reynolds at the center of the debate, most other DMS and software solution providers, such as DealerTrack, JM Solution, MPK and ADP, said they stood on the dealer’s side, but also talked about the need for safeguards against unauthorized access.

“Data in a dealership belongs in the dealership,” said Scott Barrett, president of JM Solutions. “We’ll have tight controls, but we don’t want to be the gatekeeper.”

 

ADP, which Reynolds criticized for the hard-line stance it once took on guarding access to a dealer’s DMS, used the debate to unveil its new Third-Party Access Program. It consists of three different levels of access to a dealership’s data: Third-Party Basic Access, Subscriber Access and Third-Party integration.

 

“ADP has always understood that dealerships own their data,” said Dan McCray, vice president of product marketing for ADP Dealer Services, which is a member of OSA. “Through its Third-Party Access Program, ADP can provide varying levels of security and access, allowing dealers and third parties to choose the operation that best fits their dealerships.”

 

Your Comment

Please note that comments may be moderated. 
Leave this field empty:
Your Name:  
Your Email: