Serviço de anonimização com uso de TTP

A (pseudo)anonymization service that uses a Trusted Third Party (TTP) to manage pseudonyms will be implemented. Both the GDPR and the ISO 25237: 2017 standard allow the use of a TTP to map personal data to its pseudonyms. The use of a TTP is convenient:

(1) when several data associated with the same individual is pseudonymized in different sources; (2) when several pseudonyms are used for the same individual, mapping can be used to bring together all the data associated with the same person; and (3) when, in particular cases, re-identification is necessary.

Specifically, the architecture to be developed for this TTP service should implement techniques for de-identifying raw data at source, keeping only pseudonymous and (pseudo)anonymized data on the TTP side. The main aim of this service is to be a facilitator for typical scenarios in health data lake contexts, where several organizations wish to anonymize the personal data they hold for use in a collaborative project, but also need to link (pseudo)anonymized datasets from separate organizations (e.g. seeking to establish the patient pathway), giving rise to anonymized datasets for specific research purposes.

Date Start

Jan. 3, 2023

Date End

Dec. 31, 2025