'Customer data' is the term many enterprise practitioners use in preference to 'personal data' or 'PII' when the conversation is about commercial data governance rather than strictly regulatory compliance. The shift in terminology reflects a shift in framing: personal data is a legal category defined by regulators; customer data is a business asset that happens to carry legal obligations.
Customer data encompasses several distinct categories:
Managing customer data responsibly requires connecting two things that organizations often treat separately: the commercial imperative to know and serve customers well, and the legal and ethical obligation to use their data only for purposes they've agreed to. The organizations that do both well, building direct customer relationships, collecting data with genuine consent, and managing permissions rigorously, are best positioned for a regulatory environment where the cost of getting this wrong keeps rising.