Data Privacy: Anonymization & Re-Identification

•

1 like•1,117 views

With the rise of the Internet of Things, Big Data and Open Data, data privacy is increasingly important to organizations. Data de-identification is a process to remove identifying information from a data set. This presentation will provide a gentle introduction to data de-identification, anonymization and the reverse process of re-identification.

Technology

DATA PRIVACY:
ANONYMIZATION & RE-IDENTIFICATION
Mike Nowakowski
@mike_nowakowski
MARCH 2016

This presentation content is for educational and information purposes only.
BACKGROUND
➔ Assessment
➔ Treatment
➔ Financing
RISK MANAGEMENT

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
De-identification is a process which removes the
association (personal information) between a
subject (person) and another entity (data set).
WHAT IS DE-IDENTIFICATION?

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
WHAT IS DE-IDENTIFICATION?
RISK TREATMENT
CONTROLS
DE-IDENTIFICATION... ...
... ...

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
EXAMPLE
Name Birth Date Postal Code Ice Cream
Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip
Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla
... ... ... ...

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
EXAMPLE
ID Name Birth Date Postal Code Ice Cream
47562 Bob Smith Jan 1, 1976 K1A 0B1 Chocolate Chip
17236 Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla
... ... ... ...
ID Ice Cream
47562 Chocolate Chip
17236 Vanilla
... ...

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
How about images? video?
CHALLENGES

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
➔ Goals
◆ Reduce Risk
◆ Maximize Data Use
WHY IS IT IMPORTANT?

This presentation content is for educational and information purposes only.
DE-IDENTIFICATION
TECHNIQUES
➔ Suppression
➔ Variation / Noise
➔ Swapping
➔ Masking

This presentation content is for educational and information purposes only.
RE-IDENTIFICATION
Re-identification is a process to reassociate a
subject to the original entity in order to determine
the identity of the subject.
WHAT IS RE-IDENTIFICATION?

This presentation content is for educational and information purposes only.
RE-IDENTIFICATION
EXAMPLE
Name Birth Date Postal Code Ice Cream
Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip
Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla
... ... ... ...

This presentation content is for educational and information purposes only.
RE-IDENTIFICATION
LINKAGE
Birth Date
Postal Code
...
Ice Cream
Name
Telephone
...
Secondary
Source

This presentation content is for educational and information purposes only.
RE-IDENTIFICATION
➔ Pattern
◆ Account Numbers
◆ Licence Plates
◆ ...
BRUTE FORCE

This presentation content is for educational and information purposes only.
RE-IDENTIFICATION
➔ 1997 - Governor's medical records
➔ 2006 - AOL Search Data
➔ 2014 - New York City Taxi
HISTORICAL EVENTS

This presentation content is for educational and information purposes only.
ANONYMIZATION
Anonymization is a process which is irreversible and
inhibits the reassociation of the subject to the
original entity.
WHAT IS ANONYMIZATION?

This presentation content is for educational and information purposes only.
ANONYMIZATION
EXAMPLE
ID Name Birth Date Postal Code
47562 Bob Smith Jan 1, 1957 K1A 0B1
17236 Alice Wilson Mar 3, 1963 B1K 1A0
ID Ice Cream
47562 Chocolate Chip
17236 Vanilla

This presentation content is for educational and information purposes only.
RISK MANAGEMENT
➔ Audits
➔ Agreements
◆ Data Use Agreement (DUA)
➔ Policies & Procedures
➔ Education & Training
➔ Limits on Use / Collection
➔ Security
MORE CONTROLS

This presentation content is for educational and information purposes only.
THANK YOU!
QUESTIONS?

This presentation content is for educational and information purposes only.
REFERENCES
Garfinkel L. S. (2015). NIST 8053 De-Identification of Personal
Information. U.S. Department of Commerce. Gaithersburg, MD
Retreived from http://dx.doi.org/10.6028/NIST.IR.8053
Nelson S. G. (2015). Practical Implications of Sharing Data: A Primer on
Data Privacy, Anonymization, and De-Identification. ThotWave
Technologies. Chapel Hill, NC. Retreived from http://suppor
t.sas.com /resources/papers/proceedings15/1884-2015.pdf
Cavoukian A., Emam E. K. (2011). Dispelling the Myths Surrounding
De-identification Anonymization Remains a Strong Tool for
Protecting Privacy. Toronto, Canada. Retreived from https:
//www
.ipc.on.ca/images/Resources/anonymization.pdf

What's hot

Data Processing - data privacy and sensitive data- Elli Papadopoulou (Librarian at Athena R.C. / OpenAIRE NOAD for Greece) Presented : at OpenAIRE - EOSC-hub webinar “Data Privacy and Sensitive Data Services” https://www.openaire.eu/item/openaire-eosc-hub-webinar-data-privacy-and-sensitive-data-services https://www.openaire.eu/item/openaire-eosc-hub-webinar-data-privacy-and-sensitive-data-services

Data Processing - data privacy and sensitive data

OpenAIRE

Lecture 4 confidentiality, disclosure and the law.1

Newham College University Centre Stratford Newham

GDPR is coming for you whether you’re ready or not. Companies must show compliance by May 25, 2018. Take a look at the presentation to learn more about the new law that is going to change the way data is handled across the world. Read about the how it affects you and the steps you can take to make sure you’re GDPR ready! About Extentia Information Technology: Extentia is a global technology and services firm that helps clients transform and realize their digital strategies. With a focus on enterprise mobility, cloud computing, and user experiences, Extentia strives to accomplish and surpass your business goals. Our team is differentiated by an emphasis on excellent design skills that we bring to every project. Extentia’s work environment and culture inspire team members to be innovative and creative, and to provide clients with an exceptional partnership experience. www.extentia.com

General Data Protection Regulation (GDPR)

Extentia Information Technology

Digital personal data protection act, 2023.pptx

DineshPrasad64

Introduction to GDPR

Priyab Satoshi

This webinar covers: -The definitions of ‘data controller’ and ‘data processor’ under the GDPR. -The responsibilities and obligations of controllers and processors. -The data breach reporting responsibilities of controllers and processors. -The liability of, and penalties that may be imposed on, data processors and controllers. -The appointment of joint controllers and subcontracting processors The webinar can be found here https://www.youtube.com/watch?v=cyUPGGD3iVg&t=8s

Legal obligations and responsibilities of data processors and controllers und...

IT Governance Ltd

Privacy by Design and by Default + General Data Protection Regulation with Si...

Peter Procházka

Privacy and Data Security

WilmerHale

At a time when the risks and costs associated with privacy are on the rise, differential privacy offers a solution. Differential privacy is mathematical definition for the privacy loss that results to individuals when their private information is used to create an AI product. It can be used to build customer trust, making those customers more likely to share their data with you. This slideshare will help you get a concise explanation of what differential privacy is, how it works, and how you can use it to help your company improve your machine learning models and overcome the cold-start problem.

What is Differential Privacy?

Georgian

Data Protection and Privacy

Vertex Holdings

The “Privacy Today” presentation was written for the IAPP by Professor Peter Swire of the Moritz College of Law of the Ohio State University. The materials cover the definition of privacy, ways to protect privacy, privacy harms, and fair information practices. The “Privacy Today” presentation is designed for college and university students. Licensed under Creative Commons Attribution 3.0 Unported

“Privacy Today” Slide Presentation

tomasztopa

GDPR

Gopi PD

What is Asymmetric Encryption? Understand with Simple Examples

CheapSSLsecurity

Today, balancing business opportunity and customer's data protection has become a difficult challenge. As technology, data sources and targeting abilities grow, so does the crucial need to respect user privacy and ensure a good data protection. But with laws, practices and definitions that are constantly evolving around the world, it can all seem a bit confusing. Not sure where to start? Wondering how you can better align with privacy law? Then this webinar is for you.

Data Privacy: What you need to know about privacy, from compliance to ethics

AT Internet

An overview of methods for data anonymization

arx-deidentifier

GDPR and Security.pdf

Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001

Data protection

Lewis Silkin

Data Privacy Introduction

G Prachi

Data security

AbdulBasit938

Data & Privacy: Striking the Right Balance - Jonny Leroy

Thoughtworks

What's hot (20)

Data Processing - data privacy and sensitive data

Lecture 4 confidentiality, disclosure and the law.1

General Data Protection Regulation (GDPR)

Digital personal data protection act, 2023.pptx

Introduction to GDPR

Legal obligations and responsibilities of data processors and controllers und...

Privacy by Design and by Default + General Data Protection Regulation with Si...

Privacy and Data Security

What is Differential Privacy?

Data Protection and Privacy

“Privacy Today” Slide Presentation

GDPR

What is Asymmetric Encryption? Understand with Simple Examples

Data Privacy: What you need to know about privacy, from compliance to ethics

An overview of methods for data anonymization

GDPR and Security.pdf

Data protection

Data Privacy Introduction

Data security

Data & Privacy: Striking the Right Balance - Jonny Leroy

Recently uploaded

The Raspberry Pi 5 was announced on October 2023. This new version of the popular embedded device comes with a new iteration of Broadcom’s VideoCore GPU platform, and was released with a fully open source driver stack, developed by Igalia. The presentation will discuss some of the major changes required to support this new Video Core iteration, the challenges we faced in the process and the solutions we provided in order to deliver conformant OpenGL ES and Vulkan drivers. The talk will also cover the next steps for the open source Raspberry Pi 5 graphics stack. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://eoss24.sched.com/event/1aBEx

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...

Igalia

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Civil Lines Women Seeking Men

Delhi Call girls

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Histor y of HAM Radio presentation slide

vu2urc

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Delhi Call girls

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

What are drone anti-jamming systems? The drone anti-jamming systems and anti-spoof technology protect against interference, jamming, and spoofing of the UAVs. To protect their security, countries are beginning to research drone anti-jamming systems, also known as drone strike weapons. The anti-jam and anti-spoof technology protects against interference, jamming and spoofing. A drone strike weapon is a drone attack weapon that can attack and destroy enemy drones. So what is so unique about this amazing system?

What Are The Drone Anti-jamming Systems Technology?

Antenna Manufacturer Coco

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

Recently uploaded (20)

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...

08448380779 Call Girls In Civil Lines Women Seeking Men

How to Troubleshoot Apps for the Modern Connected Worker

Handwritten Text Recognition for manuscripts and early printed texts

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

presentation ICT roal in 21st century education

Histor y of HAM Radio presentation slide

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Automating Google Workspace (GWS) & more with Apps Script

Finology Group – Insurtech Innovation Award 2024

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

GenAI Risks & Security Meetup 01052024.pdf

Powerful Google developer tools for immediate impact! (2023-24 C)

What Are The Drone Anti-jamming Systems Technology?

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Exploring the Future Potential of AI-Enabled Smartphone Processors

Strategies for Landing an Oracle DBA Job as a Fresher

Data Cloud, More than a CDP by Matt Robison

Data Privacy: Anonymization & Re-Identification

1. DATA PRIVACY: ANONYMIZATION & RE-IDENTIFICATION Mike Nowakowski @mike_nowakowski MARCH 2016

2. This presentation content is for educational and information purposes only. BACKGROUND ➔ Assessment ➔ Treatment ➔ Financing RISK MANAGEMENT

3. This presentation content is for educational and information purposes only. DE-IDENTIFICATION De-identification is a process which removes the association (personal information) between a subject (person) and another entity (data set). WHAT IS DE-IDENTIFICATION?

4. This presentation content is for educational and information purposes only. DE-IDENTIFICATION WHAT IS DE-IDENTIFICATION? RISK TREATMENT CONTROLS DE-IDENTIFICATION... ... ... ...

5. This presentation content is for educational and information purposes only. DE-IDENTIFICATION EXAMPLE Name Birth Date Postal Code Ice Cream Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla ... ... ... ...

6. This presentation content is for educational and information purposes only. DE-IDENTIFICATION EXAMPLE Name Birth Date Postal Code Ice Cream Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla ... ... ... ... Direct Identifier

7. This presentation content is for educational and information purposes only. DE-IDENTIFICATION EXAMPLE Name Birth Date Postal Code Ice Cream Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla ... ... ... ... Indirect (Quasi) Identifiers

8. This presentation content is for educational and information purposes only. DE-IDENTIFICATION EXAMPLE ID Name Birth Date Postal Code Ice Cream 47562 Bob Smith Jan 1, 1976 K1A 0B1 Chocolate Chip 17236 Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla ... ... ... ... ID Ice Cream 47562 Chocolate Chip 17236 Vanilla ... ...

9. This presentation content is for educational and information purposes only. DE-IDENTIFICATION How about images? video? CHALLENGES

10. This presentation content is for educational and information purposes only. DE-IDENTIFICATION ➔ Goals ◆ Reduce Risk ◆ Maximize Data Use WHY IS IT IMPORTANT?

11. This presentation content is for educational and information purposes only. DE-IDENTIFICATION TECHNIQUES ➔ Suppression ➔ Variation / Noise ➔ Swapping ➔ Masking

12. This presentation content is for educational and information purposes only. RE-IDENTIFICATION Re-identification is a process to reassociate a subject to the original entity in order to determine the identity of the subject. WHAT IS RE-IDENTIFICATION?

13. This presentation content is for educational and information purposes only. RE-IDENTIFICATION EXAMPLE Name Birth Date Postal Code Ice Cream Bob Smith Jan 1, 1957 K1A 0B1 Chocolate Chip Alice Wilson Mar 3, 1963 B1K 1A0 Vanilla ... ... ... ...

14. This presentation content is for educational and information purposes only. RE-IDENTIFICATION LINKAGE Birth Date Postal Code ... Ice Cream Name Telephone ... Secondary Source

15. This presentation content is for educational and information purposes only. RE-IDENTIFICATION ➔ Pattern ◆ Account Numbers ◆ Licence Plates ◆ ... BRUTE FORCE

16. This presentation content is for educational and information purposes only. RE-IDENTIFICATION ➔ 1997 - Governor's medical records ➔ 2006 - AOL Search Data ➔ 2014 - New York City Taxi HISTORICAL EVENTS

17. This presentation content is for educational and information purposes only. ANONYMIZATION Anonymization is a process which is irreversible and inhibits the reassociation of the subject to the original entity. WHAT IS ANONYMIZATION?

18. This presentation content is for educational and information purposes only. ANONYMIZATION EXAMPLE ID Name Birth Date Postal Code 47562 Bob Smith Jan 1, 1957 K1A 0B1 17236 Alice Wilson Mar 3, 1963 B1K 1A0 ID Ice Cream 47562 Chocolate Chip 17236 Vanilla

19. This presentation content is for educational and information purposes only. RISK MANAGEMENT ➔ Audits ➔ Agreements ◆ Data Use Agreement (DUA) ➔ Policies & Procedures ➔ Education & Training ➔ Limits on Use / Collection ➔ Security MORE CONTROLS

20. This presentation content is for educational and information purposes only. THANK YOU! QUESTIONS?

21. This presentation content is for educational and information purposes only. REFERENCES Garfinkel L. S. (2015). NIST 8053 De-Identification of Personal Information. U.S. Department of Commerce. Gaithersburg, MD Retreived from http://dx.doi.org/10.6028/NIST.IR.8053 Nelson S. G. (2015). Practical Implications of Sharing Data: A Primer on Data Privacy, Anonymization, and De-Identification. ThotWave Technologies. Chapel Hill, NC. Retreived from http://suppor t.sas.com /resources/papers/proceedings15/1884-2015.pdf Cavoukian A., Emam E. K. (2011). Dispelling the Myths Surrounding De-identification Anonymization Remains a Strong Tool for Protecting Privacy. Toronto, Canada. Retreived from https: //www .ipc.on.ca/images/Resources/anonymization.pdf

Data Privacy: Anonymization & Re-Identification

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Recently uploaded

Recently uploaded (20)

Data Privacy: Anonymization & Re-Identification