The University of Southampton
University of Southampton Institutional Repository

What's in a name: the conflicting views of pseudonymisation under eIDAS and the General Data Protection Regulation

What's in a name: the conflicting views of pseudonymisation under eIDAS and the General Data Protection Regulation
What's in a name: the conflicting views of pseudonymisation under eIDAS and the General Data Protection Regulation
Pseudonymisation is gaining traction among modern electronic identification systems as a privacy enhancing technique that can significantly reduce risks of personal data misuse. The recently agreed General Data Protection Regulation (the GDPR) encourages the use of pseudonymisation to comply with its requirement of privacy-by-design. Art. 5 of the European Regulation on electronic identification and trust services (eIDAS) on data processing and protection simply allows the use of pseudonyms in electronic transactions although the facilitation of the implementation of the principle of privacy by design is clearly among the aims listed by Art. 12 of eIDAS. This paper examines the concept of pseudonymisation under eIDAS and the GDPR and suggests that the two Regulations employ two very different, if not incompatible, notions of pseudonymisation. It concludes that a common terminology and approach would be preferable in order to ensure consistency and legal certainty
eID, eIDAS, pseudonymisation, pseudonyms, GDPR
1617-5468
167-174
Gesellschaft für Informatik
Tsakalakis, Niko
7d9c7129-d04e-4ed6-aefa-12371a007b95
Stalla-Bourdillon, Sophie
c189651b-9ed3-49f6-bf37-25a47c487164
O'Hara, Kieron
0a64a4b1-efb5-45d1-a4c2-77783f18f0c4
Hühnlein, Detlef
Roßnagel, Heiko
Schunck, Christian H.
Talamo, Maurizio
Tsakalakis, Niko
7d9c7129-d04e-4ed6-aefa-12371a007b95
Stalla-Bourdillon, Sophie
c189651b-9ed3-49f6-bf37-25a47c487164
O'Hara, Kieron
0a64a4b1-efb5-45d1-a4c2-77783f18f0c4
Hühnlein, Detlef
Roßnagel, Heiko
Schunck, Christian H.
Talamo, Maurizio

Tsakalakis, Niko, Stalla-Bourdillon, Sophie and O'Hara, Kieron (2016) What's in a name: the conflicting views of pseudonymisation under eIDAS and the General Data Protection Regulation. Hühnlein, Detlef, Roßnagel, Heiko, Schunck, Christian H. and Talamo, Maurizio (eds.) In Open Identity Summit 2016: October 13–14, 2016, Rome, Italy. vol. P-264, Gesellschaft für Informatik. pp. 167-174 .

Record type: Conference or Workshop Item (Paper)

Abstract

Pseudonymisation is gaining traction among modern electronic identification systems as a privacy enhancing technique that can significantly reduce risks of personal data misuse. The recently agreed General Data Protection Regulation (the GDPR) encourages the use of pseudonymisation to comply with its requirement of privacy-by-design. Art. 5 of the European Regulation on electronic identification and trust services (eIDAS) on data processing and protection simply allows the use of pseudonyms in electronic transactions although the facilitation of the implementation of the principle of privacy by design is clearly among the aims listed by Art. 12 of eIDAS. This paper examines the concept of pseudonymisation under eIDAS and the GDPR and suggests that the two Regulations employ two very different, if not incompatible, notions of pseudonymisation. It concludes that a common terminology and approach would be preferable in order to ensure consistency and legal certainty

Text
paper-updated.pdf - Accepted Manuscript
Download (363kB)
Text
paper-original.pdf - Accepted Manuscript
Download (352kB)

More information

Accepted/In Press date: 7 July 2016
Published date: 14 October 2016
Additional Information: Please note that this is an amended version of the original published (version of record) article. The amendments presented in this version aim to further clarify the points raised about selective disclosure and national unique identifiers.
Venue - Dates: Open Identity Summit 2016, Rome,, Italy, 2016-07-06
Keywords: eID, eIDAS, pseudonymisation, pseudonyms, GDPR

Identifiers

Local EPrints ID: 400477
URI: http://eprints.soton.ac.uk/id/eprint/400477
ISSN: 1617-5468
PURE UUID: 1e08bbc9-52af-44f5-a684-fd07d7052ed6
ORCID for Niko Tsakalakis: ORCID iD orcid.org/0000-0003-2654-0825
ORCID for Kieron O'Hara: ORCID iD orcid.org/0000-0002-9051-4456

Catalogue record

Date deposited: 16 Sep 2016 13:53
Last modified: 27 Oct 2020 20:00

Export record

Contributors

Author: Niko Tsakalakis ORCID iD
Author: Kieron O'Hara ORCID iD
Editor: Detlef Hühnlein
Editor: Heiko Roßnagel
Editor: Christian H. Schunck
Editor: Maurizio Talamo

University divisions

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×