Pseudonymization and Anonymization under the GDPR
The GDPR explicitly recognizes pseudonymization as a means of protecting personal data. Pseudonymization has certain benefits under the GDPR. At the same time, the GDPR, along with guidance from the Article 29 Working Party and some DPAs, sets the bar for strong anonymization quite high. These two approaches, pseudonymization and anonymization, provide controllers and processors with powerful mechanisms to use and disclose data, including sensitive health information, for secondary purposes and big data projects while complying with the GDPR and without having to obtain explicit consent from every data subject.
In this web conference, we will roll up our sleeves and explain what strong pseudonymization and strong anonymization mean, present the benefits of each approach, and discuss how to apply them under different data acquisition and sharing scenarios taken from the health sector.
Khaled El Emam, Founder and CEO, Privacy Analytics Inc.
Mike Hintze, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, FIP, Partner, Hintze Law, Former Chief Privacy Counsel, Microsoft
Fill out the form on the right to watch Pseudonymization and Anonymization under the GDPR. This webcast was hosted by the IAPP on October 12, 2017.