Beyond the limits of consent or anonymization: Today’s data protection schemes fall short due to data breaches and illegal data harvesting that lead to issues for citizens (identity theft, financial fraud, job discrimination, targeting (e.g. for advertising, robocalls) as well as organizations (inferred trade secrets, employee poaching). It is well known that consent or anonymization-based schemes are too weak when rogue employees or state actors are involved in data breaches. To avoid data breaches, the best practice is to prevent raw data from ever reaching the server; i.e. “no peeking allowed”.