UnixTime

Research Note

Data Masking Standard

Use this standard to define masking, pseudonymisation, tokenisation, anonymisation, full-data access, and re-identification controls.

On this page

When to use this

Use this standard to define masking, pseudonymisation, tokenisation, anonymisation, full-data access, and re-identification controls.

Method definitions

Method Definition Reversible? Approved use cases Approval required
Masking TBD Yes/No TBD TBD
Pseudonymisation/tokenisation TBD Yes TBD TBD
Anonymisation TBD No TBD TBD

Minimum checks

  • Masking methods are defined.
  • Full-data access roles are defined.
  • Lookup tables/keys are segregated.
  • Re-combination is authorized and logged.
  • Re-identification risk is assessed.
  • Re-combined data is deleted when no longer needed.