Use Case

Minimise Liability from Data Breaches

Use Pseudonymisation-Enabled Processing to:

  • Minimise Risk Exposure From Data Breaches.
  • Implement State-of-the-Art Technical Safeguards.
  • Reduce Risk to the Rights and Freedoms of Natural Persons.

Key Business Considerations

Major fines by the UK Information Commissioner’s Office (ICO) aimed at British Airways and Marriott for data breaches cite a failure to take “appropriate steps to protect fundamental privacy rights.” The 9-figure fines that they were subject to reflected the ability for GDPR-enforcing agencies like the ICO to take a significant percentage of a company’s annual revenue should they not be in compliance with the complex and nuanced privacy law.

For these companies, and the many more who may face major fines in the future, their offenses against the GDPR are not simply that they allowed a data breach to occur. Rather, the issue is that they still operated as they did in a pre-GDPR era, refusing to take steps to secure and protect personal data to the extent necessary by the new law.

Key Legal Considerations

GDPR-compliant Pseudonymisation is a state-of-the-art technical safeguard that is expressly recognised as helping to make data breaches “unlikely to result in a risk to the rights and freedoms of natural persons,” thereby reducing liability and notification obligations for data breaches.

Properly embedding GDPR Pseudonymisation controls helps to support GDPR-compliant processing of personal data. This is the step that the companies currently being fined by organizations like the ICO have failed to take: embedding Pseudonymisation-enabled technical controls into their data to help ensure the protection of fundamental privacy rights.

Anonos Pseudonymisation Technology Solution

The problem is that until now, no data protection technologies were capable of supporting these technical controls, in a way that continues to reconcile the conflict between data protection and utility when processing personal data.

For example, conventional data protection technologies that support anonymisation, encryption, static token allocation, and differential privacy:

  • Significantly degrade the utility of data, distorting the accuracy and predictability of the insights you need;
  • Fail to deliver effective protection against unauthorised re-identification; and
  • Limit the further use of valuable data for non-primary purposes.

Click here to learn how Anonos state-of-the-art Pseudonymisation technology is superior to other data protection techniques.

Anonos state-of-the-art Pseudonymisation technology is superior to other data protection techniques because it helps enable lawful repurposing, distributed secondary processing and data sharing while delivering data utility alongside data protection.