Skip to content
  • Data
  • Digital transformation

Data privacy: navigating the maze that is data privacy

Data Privacy Image (1)

by TPXimpact

Over the past few years, the world has been rocked by data scandal after data scandal (e.g. Cambridge Analytica) – which has shed a light on a new potential risk that organisations need to be averse to. Spending on data security is predicted to grow by 8.7% in 2019 – but it is a worthwhile investment when you see the havoc that lax data privacy rules can cause for an organisation.

Data privacy has become one of the hottest topics of the 21st century

In order to avoid the risk of lax data privacy, an organisation may need to invest in the following techniques;

  1. Data masking
  2. Automated Statistical Generalisation
  3. Format-preserving Tokenisation

All of these sound like big, scary techniques that can be extremely complicated to implement across the whole company – but it still stands that the best policy would be to apply all of these techniques (and more!).

Using Privitar Publisher, one can create many layers of data privacy protocols that can be consistent and repeatable across both sources and applications. This means that organisation-wide data policy can be orchestrated from one central point.

On Privitar Publisher’s UI, the user can create their data privacy policies without any coding required – meaning that policies can be understood and set by a number of different employees. The policies are stored in a central repository, where other business areas of an organisation can access them – meaning consistency in data privacy across your whole organisation.

Privitar Publisher is used as an orchestration tool where multiple technologies can be used to perform the data de-identification actions - for example Hadoop, data streaming, or Publisher On-Demand (Privitar’s own application for data de-identification jobs).

Your data is stored in a Protected Data Domain (PDD). A PDD can be accessed by the tools performing the de-identification actions, as well as surrounding tools (such as file systems, and databases). Each individual PDD can only be accessed for the individual user case (e.g. DevOps can only access the DevOps PDD). The PDD also takes care of watermarking and metadata tagging – which takes a lot of the headaches out of your data governance protocol.

There has never been a time where data de-identification has been more important for organisations – and Privitar should be your first port-of-call. The specialised software performs many actions of data de-identification, meaning that your organisation in a much safer position regarding data privacy.

TPXimpact's avatar

TPXimpact

Team

Our recent insights

FAIR Data Principles (1)

FAIR data - what is it and why should you care?

One of our senior data consultants, Dr Alasdair Gray, explains what FAIR data is, who’s using it, why it’s so useful and some common misconceptions around it.

Read more

Do you know how to destroy your data securely?

In this final part of our data ethics series, we look at what data destruction is and how you can comply with GDPR required actions.

Read more

Discussions in data ethics: How to develop data ethics in local government

In the final part of the Discussions on Data Ethics series, Professor Paul Clough, TPXImpact and Lucy Knight, ODI, discuss data literacy, effective community involvement and the value of bad news.

Read more

See more from our Knowledge hub