Use Anonos-Enabled Processing to:
Key Business Considerations
Major fines by the UK Information Commissioner’s Office (ICO) aimed at British Airways and Marriott for data breaches cite a failure to take “appropriate steps to protect fundamental privacy rights.” The 9-figure fines that they were subject to reflected the ability for GDPR-enforcing agencies like the ICO to take a significant percentage of a company’s annual revenue should they not be in compliance with the complex and nuanced privacy law.
For these companies, and the many more who may face major fines in the future, their offenses against the GDPR are not simply that they allowed a data breach to occur. Rather, the issue is that they still operated as they did in a pre-GDPR era, refusing to take steps to secure and protect personal data to the extent necessary by the new law.
Key Legal Considerations
GDPR-compliant Pseudonymisation is a state-of-the-art technical safeguard that is expressly recognised as helping to make data breaches “unlikely to result in a risk to the rights and freedoms of natural persons,” thereby reducing liability and notification obligations for data breaches.
Properly embedding GDPR Pseudonymisation controls helps to support GDPR-compliant processing of personal data. This is the step that the companies currently being fined by organizations like the ICO have failed to take: embedding Pseudonymisation-enabled technical controls into their data to help ensure the protection of fundamental privacy rights.
Anonos Decentralised Data Protection Technology
Traditional centralised data protection technologies, including encryption, anonymisation, static tokenisation, and differential privacy:
Click here to learn what other global companies have proven – that it is possible to retain up to 100% of the accuracy of analytical value when processing datasets protected using patented Anonos Variant Twins®.
Anonos state-of-the-art decentralised data protection technology is superior to traditional centralised data protection because Anonos enables lawful repurposing, distributed secondary processing and data sharing and combining while delivering data utility equivalent to processing unprotected cleartext versions of personal data.