Chapter 4: Controls Flashcards
Data-Oriented Strategies
Separate
Minimize
Hide
Abstract
Process-Oriented Strategies
Enforce
Demonstrate
Inform
Control
Separate
Separate the processing of personal data as much as possible to prevent correlation
Distribute
Process personal data (for one task) in separate locations.
Logical segregation - placing access restrictions around data
Physical segregation - storing data on different servers
Isolate
Process personal data for different purposes independently in separate databases.
E.g. Isolate data geographically, demographically, per customer, per individual.
Minimize
Limit as much as possible the processing of personal data
Exclude
Refrain from processing a data subject’s personal data.
Select
Decide on a case-by-case basis to only process relevant personal data.
Strip
Remove partially unnecessary attributes