O3.23 Establish robust data delinking mechanisms

Principle

O3: Ensure data privacy by design

Risk

RS1 Privacy vulnerability

Life Cycle Stage

L2: Strategy and Design

Practices

• Use automated scripts that routinely delink identifiers from datasets after data processing is complete, as practiced in some Nordic countries’ privacy frameworks.

• Implement temporary session identifiers in online services that expire after the session ends. Pairwise pseudonymous identifiers should be used wherever possible to prevent correlation of user data across interactions.

Resources

References