Volume 15, Number 6
Data Anonymization Process Challenges and Context Missions
Authors
Hassane Tahir and Patrick Brezillon, Sorbonne Université, France
Abstract
Data anonymization is one of the solutions allowing companies to comply with the GDPR directive in terms of data protection. In this context, developers must follow several steps in the process of data anonymization in development and testing environments. Indeed, real personal and sensitive data must not leave the production environment which is very secure. Often, anonymization experts are faced with difficulties including the lack of data flows and mapping between data sources, the non-cooperation of the database project teams (refusal to change) or even the lack of skills of these teams present due to the age of the systems developed by experienced teams who unfortunately left the project. Other problems are lack of data models. The aim of this paper is to discuss an anonymization process of databases of banking applications and present our context-based recommendations to overcome the different issues met and the solutions to improve methodologies of data anonymization process.
Keywords
Context, Data Anonymization, GDPR, Personal Data, Process of Anonymization, Sensitive Data.