Agencja Unii Europejskiej ds. Cyberbezpieczeństwa, Psedonimizacja danych: Zaawansowane techniki i przypadki zastosowania. Analiza techniczna środków cyberbezpieczeństwa w ochronie danych i prywatności

DATA PSEUDONYMISATION: ADVANCED TECHNIQUES & USE CASES

Technical analysis of cybersecurity measures in data protection and privacy

JANUARY 2021

EXECUTIVE SUMMARY

Pseudonymisation is an established and accepted data protection measure that has gained additional attention following the adoption of the General Data Protection Regulation (GDPR) where it is both specifically defined and many times referenced as a safeguard.

ENISA, in its prior work on this field, has explored the notion and scope of data pseudonymisation, while presenting some basic technical methods and examples to achieve pseudonymisation in practice. In this new report, ENISA complements its past work by discussing advanced pseudonymisation techniques, as well as specific use cases from the specific sectors of healthcare and cybersecurity. In particular, the report, building on the basic pseudonymisation techniques, examines advanced solutions for more complex scenarios that can be based on asymmetric encryption, ring...