2 min read

Writen by Zlatko Delev

Posted on: October 11, 2021

ICO published the next chapter of the Anonymisation guidance draft : Anonymisation, pseudonymisation and privacy enhancing technologies guidance

How to ensure anonymisation is effective?

The ICO is calling for views on its updated draft guidance on anonymisation, pseudonymisation and privacy enhancing technologies. ICO are sharing their thinking in stages to ensure they gather as much feedback as possible to help refine and improve the final guidance, which will carry out a formal consultation.

In the first chapter ‘Introduction to Anonymisation’ it is outlined the legal, policy and governance issues around the application of anonymisation in the context of data protection law. .

The second chapter ‘Identifiability’ focuses on how to assess anonymisation in the context of identifiability. ICO explores the concept of a spectrum of identifiability, data sharing scenarios, the motivated intruder and reasonably likely tests as well as guidance on managing re-identification risk. These key principles set out views on effective anonymisation.

ICO will continue to publish draft chapters for comment at regular intervals. As outlined the next chapters to follow will include:

  • Guidance on pseudonymisation techniques and best practices;
  • Accountability and governance requirements in the context of anonymisation and pseudonymisation, including data protection by design and DPIAs;
  • Anonymisation and research – how anonymisation and pseudonymisation apply in the context of research;
  • Guidance on privacy enhancing technologies (PETs) and their role in safe data sharing;
  • Technological solutions – exploring possible options and best practices for implementation; and
  • Data sharing options and case studies – supporting organisations to choose the right data sharing measures in a number of contexts including sharing between different organisations and open data release. Developed with key stakeholders, our case studies will demonstrate best practice.

Recent blogs

What is Schrems II and how does it affect your international data transfer

On July 16, 2020 the Court of Justice of the European Union [CJEU] issued its judgement in the Data

Is buying data legal and GDPR compliant?

This is a complicated question, but in short, using bought data is legal and in line with GDPR (Gen

How GDPR affects Staffing and Recruiting

GDPR affects Staffing and Recruiting by how data can be stored, collected and processed. The proces

Get Your Account Now

Setup in just 5 minutes. Enter your company details and choose the EU Representative services you need.

Give Us a Call

Not sure whether EU Representative applies to you or which option to choose? Call, email, chat to us anytime.


Stay Up-To-Date

Leave your details here and we’ll send you updates and information on all aspects of GDPR and EU Representative. We won’t bombard you with emails and you will be able to tell us to stop anytime.