GDPR question - personal user data used in aggregate data analytics?

[vlbee]

Question that came up in conversation related to GDPR - If I use personal user data in anonymised aggregated data analytics and then the user opts-out, does their input into the aggregate analysis need to be removed?

[nelsonic]

@vlbee thank you for opening this question. 👍

Answer: "it depends" on the type of data stored and how well "anonymised" it is.

Recital 26 http://www.privacy-regulation.eu/en/recital-26-GDPR.htm "The principles of data protection should therefore not apply to anonymous information, namely information which does not relate to an identified or identifiable natural person or to personal data rendered anonymous in such a manner that the data subject is not or no longer identifiable."

So, provided that your application effectively anonymises all personally identifiable information please see: https://en.wikipedia.org/wiki/Personally_identifiable_information#NIST_definition removing all names, nicknames/usernames, email, address/places, IP address, phone, national/social security number, gender, date-of-birth, etc. It will be GDPR-compliant.

Always take the approach of "over anonymising" any data, because there are "Data Scientists" and "Intelligence Experts" who's job it is to "de-anonymise" data see: https://en.wikipedia.org/wiki/De-anonymization And the algorithms for identifying people through anonymised data will only continue to improve as machine learning and access to larger datasets become widespread.

[vlbee]

Thanks @nelsonic !

We might be aggregating some anonymised user data (but not personally identifiable information!) in an upcoming FAC project so this is very helpful!