Pseudonymisation

< Back
You are here:

Pseudonymisation can be defined as “personal data which is rendered less likely to lead to the identification of the data subject without the use of additional information”  Therefore as long as such additional information is kept separately, pseudonymisation offers some level of additional protection of the data.

An example of weak pseudonymisation might include a payroll report where names have been removed but personnel numbers remain an stronger example might include clinical sample data where the hospital codes the sample rather than providing the data subjects name.

Pseudonimised data includes a residual risk and therefore it remains within the scope of GDPR.  It should be considered a good ‘technical or organisational measure’ for maintaining the confidentiality of personal data.

This article can be read in conjunction with the anonymisation & encryption articles

Mark Roebuck

Mark Roebuck

Building a career around data led programme management Mark recognised that existing data compliance solutions were complex and difficult for clients to use. Frustrated with the options he founded ProvePrivacy to provide an effective and simple to use data protection compliance solution.

Copyright:  All information and articles provided represent the views of ProvePrivacy Limited and our contributors.  They do not constitute legal or data protection advice. All rights reserved.

You Might Also Like