Afin de répondre aux exigences du RGPD en matière de mesures techniques appropriées, dans le cadre du contrat de sous-traitance (art. 28), au regard de la sécurité des traitements (art. 32), ou simplement par « privacy by design and default », Piano Analytics met en œuvre les mécanismes de pseudonymisation et d’anonymisation suivants :
Data | Mechanism | Standard or Option | How is it done ? | PA Property concerned | Example / Description | ||
Terminal ID | Pseudonymisation | Standard | Hashing the original value | Visitor ID | The value GW_33 !BG87-6 stored on Client side (e.g. Cookie), becomes xw_tr78opUI-451 within the Piano Analytics interfaces. | ||
Visitor ID | Anonymisation | Standard | Aggregation of the opt-out traffic | Visitor ID | All the opt-out traffic data is aggregated under the same Visitor ID value => “opt-out” | ||
Visitor ID | Anonymisation | Standard | Nulling the concerned value | Visitor ID | If an End-User would like to apply its right to be forgotten (deletion), we null the concerned value (e.g. xw_tr78opUI-451 become NULL). | ||
Visitor ID | Anonymisation | Option | Masking of the property | None | The Visitor ID is no longer available within the Piano Analytics interfaces. | ||
User ID | Pseudonymisation | Option | Random value | User ID |
When Visitors logged in on a platform, the customer can assign a single identifier to recognise him across devices. It is highly recommended that the customer provide Piano Analytics with a random ID via the tag (instead of email address for instance), and keep a matching table on his side (e.g. Firstname.Lastname@company.com become 123456). |
||
IP Address | Anonymisation | Option |
For IPv4 : Truncation of the last octet For IPv6 : Truncation of the last 10 octets |
None | The IP address is truncated before being used for the processing of geolocation for instance. | ||
GPS coordinate | Anonymisation | Standard | Rounding (to 1 decimal) | None | If used, the GPS coordinate are rounded before being used for the processing of geolocation (e.g. 48.86000061 / 2.33999991 become 48.8 / 2.3). | ||
Any information | Anonymisation | Standard | Nulling the concerned value | Concerned property | If an End-User would like to apply its right to be forgotten (deletion), we null the concerned value (e.g. 12345 or Order_101 become NULL). | ||
Any information | Anonymisation | Option | Emptying the concerned value | Concerned property | The data controller can empty property during the processing, so no information is stored (see Privacy Flags and Data Manager). |
Il est également à noter que l’intégralité des données Piano Analytics sont chiffrées par défaut.