Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • CNIL CPDP 1/21/15 Presentation by Vincent Toubiana

    Încărcat de

    tedmyerson
    57 vizualizări8 pagini
    CNIL CPDP 1/21/15 Presentation by Vincent Toubiana

    Drepturi de autor

    © Public Domain

    Formate disponibile

    PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    CNIL CPDP 1/21/15 Presentation by Vincent Toubiana

    Drepturi de autor:

    Public Domain
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    57 vizualizări8 pagini

    CNIL CPDP 1/21/15 Presentation by Vincent Toubiana

    Încărcat de

    tedmyerson
    CNIL CPDP 1/21/15 Presentation by Vincent Toubiana

    Drepturi de autor:

    Public Domain
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 8

    WP 29 Opinion on anonymization techniques

    21/01/2014

    Vincent TOUBIANA

    Expert a la Commission Nationale de IInformatique el des Libertes

    The need to define Anonymization


    Dichotomy between Personal Data and Anonymized Data
    There is no intermediary state,
    Anonymized data not subject to DPL (can be published)

    Anonymized Data

    OPINION ON ANONYMIZATION TECHNIQUES

    Personal Data

    Pseudonymization and De-identification


    For most Data Controller: Removing PIII

    Anonymization

    How many Data Controllers see it

    Anonymized Data
    Pseudonymized
    Data

    OPINION ON ANONYMIZATION TECHNIQUES

    Personal Data

    Pseudonymization and De-identification


    For most Data Controller: Removing PIII

    Anonymization

    The opinion insists that its not the case: Psudomized Anonymized
    What de-anonymization
    attacks proved

    Anonymized Data

    Personal Data
    Pseudonymized
    Data

    OPINION ON ANONYMIZATION TECHNIQUES

    Pseudonymization and De-identification


    For most Data Controller: Removing PIII

    Anonymization

    The opinion insists that its not the case: Psudomized

    Anonymized

    New regulation could introduce pseudonymous data as an intermediary state


    personal data that cannot be attributed to a specific data subject without the use of
    additional information

    OPINION ON ANONYMIZATION TECHNIQUES

    Pseudonymous Data

    Anonymized Data

    Personal Data

    Pseudonymization and De-identification


    For most Data Controller: Removing PIII

    Anonymization

    The opinion insists that its not the case: Psudomized

    Anonymized

    New regulation could introduce pseudonymous data as an intermediary state


    Blurred line

    Anonymized Data

    OPINION ON ANONYMIZATION TECHNIQUES

    Personal Data

    Anonymization
    No clear line between Anonymized and Personal data
    The opinion provides two options to check that a Dataset is anonymized
    1: Your dataset has none of the following property:
    - Singling out: possibility to isolate some records of an individual in the dataset
    - Linkability: ability to link, at least, two records concerning the same data subject or a group of data
    subjects (in the same database or in two different database)
    - Interference: the possibility to deduce, with significant probability, the value of an attribute from the
    values of a set of another attributes

    OR
    2: Make analysis of re-identification risk

    OPINION ON ANONYMIZATION TECHNIQUES

    Is Big Data compatible with anonymity


    No Inference means no Big Data about individuals.
    Inference can still be done about environment, objects,
    consumptions ... know how your dataset will be used.
    Re-identification risk analysis option may not prohibit
    interference about individuals.

    OPINION ON ANONYMIZATION TECHNIQUES

    S-ar putea să vă placă și