that solved historical privacy and security problems are no longer
sufficient. New technical measures are now required by
Thankfully, BigPrivacy® preserves and even increases
your ability to use data.
The GDPR requires unprecedented new technical measures to
support “data protection by default�? to enable the flow,
commercial use, and value maximization of data in a way that
recognizes, respects and enforces the rights of individual data
Traditional technologies like encryption, hashing, and Privacy
Enhancing Techniques (PETs, e.g., k-anonymity, l-diversity, and
differential privacy) were developed long before GDPR requirements
were established and fail to satisfy new GDPR data protection by
Static “anonymous/pseudonymous�? tokens fall short because
links between data subjects and identifying information remain
readily ascertainable, so they fail to satisfy data protection by
default requirements, because of re-identification risks from
unauthorized data linking.
Stateless “anonymous/pseudonymous�? tokens developed for PCI
compliance in the payment card industry fail to enforce authorized
re-linking and revealing of personal data under the controlled
conditions as necessary to support iterative analytics and
beneficial secondary uses of data.
BigPrivacy technology supports GDPR requirements for “data
protection by default�? by controlling the linkability of personal
data to individual data subjects.