that solved historical privacy and security problems are no longer
sufficient. New technical measures are now required by
Thankfully, BigPrivacy® preserves and even increases
your ability to use data.
The GDPR requires unprecedented new technical measures to
support “data protection by default” to enable the flow, commercial
use, and value maximization of data in a way that recognizes,
respects and enforces the rights of individual data subjects
Traditional technologies like encryption, hashing, and Privacy
Enhancing Techniques (PETs, e.g., k-anonymity, l-diversity, and
differential privacy) were developed long before GDPR requirements
were established and fail to satisfy new GDPR data protection by
Static “anonymous/pseudonymous” tokens fall short because links
between data subjects and identifying information remain readily
ascertainable, so they fail to satisfy data protection by default
requirements, because of re-identification risks from unauthorized
Stateless “anonymous/pseudonymous” tokens developed for PCI
compliance in the payment card industry fail to enforce authorized
re-linking and revealing of personal data under the controlled
conditions as necessary to support iterative analytics and
beneficial secondary uses of data.
BigPrivacy technology supports GDPR requirements for “data
protection by default” by controlling the linkability of personal
data to individual data subjects.