I need to take a copy of live data for data migration testing. We have spoken with data protection and the project sponsor was sent a document which allows this to happen but states all sensitive data must be anonymised as soon as possible after the copy is taken and before the data is used for anything.
The consultancy quoted 2 days for this work, without consulting with me first so are now trying to circumvent this part as it is taking much much longer.
We have no tooling for this so I've written my own and am in the process of configuring it. I'm about 50% of the way through.
The consultancy are now suggesting we run with what we have, a 50% anonymised database. This baffles me as I I think it clearly is just as bad as if I didn't do any anonymisation
So the penalties for misuse of data are 300000 euro fine and I think jail time for the data protection officer
What penalties face me if I follow their instructions and proceed to test with a half scrubbed database?.
There will be end users involved and it will be obvious it's real data so it only takes one snitch.
The kind of personal data includes full name, home address, date of birth, personal telephone number and passport number.
The consultancy quoted 2 days for this work, without consulting with me first so are now trying to circumvent this part as it is taking much much longer.
We have no tooling for this so I've written my own and am in the process of configuring it. I'm about 50% of the way through.
The consultancy are now suggesting we run with what we have, a 50% anonymised database. This baffles me as I I think it clearly is just as bad as if I didn't do any anonymisation
So the penalties for misuse of data are 300000 euro fine and I think jail time for the data protection officer
What penalties face me if I follow their instructions and proceed to test with a half scrubbed database?.
There will be end users involved and it will be obvious it's real data so it only takes one snitch.
The kind of personal data includes full name, home address, date of birth, personal telephone number and passport number.
Keep calm and wait
Comment