undefined | Better HN

0 pointsdan-08y ago0 comments

> If you back up a list of things to delete is that GDPR compliant? Ponder.

There's little to ponder, that's why I mentioned "entities" rather than "user data." Use unique keys to reference the data rather than sensitive identifiers. The nontrivial part is storing your backup of entities to be deleted in a way that doesn't get destroyed at the same time as the event that forces you to revert to a backup. This now requires a separate storage, backup, and retrieval mechanism to maintain compliance.

0 comments

3 comments · 1 top-level

erichocean8y ago· 2 in thread

> Use unique keys to reference the data rather than sensitive identifiers.

This is terrible advice. All identifiers are PII and covered by the GDPR, not just the "sensitive" ones.

jdietrich8y ago

The GDPR does not use the term "personally identifying information" anywhere in the text. Using that term suggests that you either haven't read the text or haven't understood it.

"Personal data" (the term actually used in GDPR) means any information relating to an identified or identifiable natural person. The GDPR specifically states that the regulations do not apply to anonymous data. A list of unique keys marked "never restore this data from backups" is not personal data. The data associated with those identifiers is not personal data if it cannot be associated with an identifiable natural person.

https://gdpr-info.eu/art-4-gdpr/

https://gdpr-info.eu/recitals/no-26/

Quantum has produced a very useful white paper on GDPR in relation to backup and archive systems.

https://landing.quantum.com/GDPR_WP_0118_RP.html

erichocean8y ago

You italicized the wrong data here: "Personal data" means any information relating to an identified or identifiable natural person"

Here's how to read it: "Personal data" means any information relating to an identified or identifiable natural person"

The "any information relating to" part is exactly the "unique keys" that you seem to think are not covered. The uniqueness and mapping to a person is literally the problem.

And re: PII, seriously? You're upset because I didn't type out "Personal Data"—even though you knew exactly what I was referring to, as did everyone else? Fight bigger battles…

1 more reply

j / k navigate · click thread line to collapse