Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

GDPR: The feature to pseudo-anonymise User ID is actually "replacing the User ID with a pseudonym" #12836

Closed
mattab opened this issue May 7, 2018 · 1 comment
Assignees
Labels
c: Privacy For issues that impact or improve the privacy.
Milestone

Comments

@mattab
Copy link
Member

mattab commented May 7, 2018

Recently we added a feature called Anonymise User ID which is actually only Pseudo-anonymise User ID the user id by doing a SHA1 + Salt. So we should rename the feature to "Pseudo-anonymise" to not be misleading.

You can see it here: https://media.githubusercontent.com/media/matomo-org/matomo/3.x-dev/plugins/PrivacyManager/tests/UI/expected-screenshots/PrivacyManager_privacy_settings_default.png

Note: the IP Address is properly anonymised (since we remove information and truncate the last bytes). Similarly the Ecommerce Order ID is also properly anonymised since there is random number in the value being hashed.

Follows up #12558 #12641

@mattab mattab added the c: Privacy For issues that impact or improve the privacy. label May 7, 2018
@mattab mattab added this to the 3.5.0 milestone May 7, 2018
@mattab mattab changed the title GDPR: The feature to anonimyse User ID is actually only pseudo-anonymising User ID GDPR: The feature to anonymise User ID is actually only pseudo-anonymising User ID May 7, 2018
@mattab
Copy link
Member Author

mattab commented May 7, 2018

Some detailed background on Pseudoanonymising (actually: pseudonymization) here: https://iapp.org/news/a/looking-to-comply-with-gdpr-heres-a-primer-on-anonymization-and-pseudonymization/

@diosmosis diosmosis self-assigned this May 7, 2018
@mattab mattab changed the title GDPR: The feature to anonymise User ID is actually only pseudo-anonymising User ID GDPR: The feature to pseudo-anonymise User ID is actually "replacing the User ID with a pseudonym" May 8, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
c: Privacy For issues that impact or improve the privacy.
Projects
None yet
Development

No branches or pull requests

2 participants