How does 'data minimization' specifically reduce the risk of identity theft?

Data minimization reduces the risk of identity theft by limiting the amount of personal information available to potential thieves. 'Data minimization' is the principle of collecting and retaining only the data that is strictly necessary for a specific, legitimate purpose. If less personal data exists, there's less data to be stolen in a data breach or through other means. For example, if an online retailer only asks for your name, email address, and shipping address when you make a purchase, instead of also asking for your date of birth, social security number, or mother's maiden name, the potential damage from a data breach is significantly reduced. Should the retailer's database be compromised, the thieves would only gain access to the limited information collected, preventing them from using additional details to impersonate you, open fraudulent accounts, or commit other forms of identity theft. The fewer pieces of identifying information that are compromised, the more difficult it is for someone to successfully steal your identity.