Research Article

An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization

Volume: 15 Number: 2 July 14, 2023
EN TR

An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization

Abstract

The increasing need for data privacy and the rising complexity of data environments necessitate robust data anonymization techniques to safeguard personal and sensitive information. A multi-model approach to data anonymization can strike an optimal balance between privacy protection and data utility, integrating techniques such as data masking, differential privacy, machine learning algorithms, blockchain technology, and data encryption. This article introduces a Security-Centric Enterprise Data Anonymization Governance Model, a structured framework for managing data privacy across healthcare, finance, and government industries. The model ensures adherence to best practices and compliance with legal and regulatory requirements. The article addresses challenges in implementing data anonymization techniques, including maintaining data utility and preventing re-identification, by advocating for a multi-model approach that combines various technologies and methods. We suggest that by adopting this holistic approach, organizations can enhance their data protection measures and foster a culture of data privacy.

Keywords

data privacy, data anonymization, multi-model approach, data utility, data governance

References

  1. Ajayi, O. O., & Adebiyi, T. O. (2014). Application of Data Masking in Achieving Information Privacy. IOSR Journal of Engineering, 4(2), 13-21.
  2. Cavoukian, A., & Jonas, J. (2011). Privacy by design: A framework for designing privacy into the new technologies. Identity in the Information Society, 4(1), 3-23. doi: 10.1007/s12394-010-0052-3 Directive 95/46/EC, (2016). Retrieved from: https://eur-lex.europa.eu/legal-content/EN/TXT/uri=CELEX%3A02016R0679- 20160504&qid=1532348683434
  3. El Emam, K., Jonker, E., Arbuckle, L., & Malin, B. (2011). A systematic review of re-identification attacks on health data. Plos One, 6(12), 28071. https://doi.org/10.1371/journal.pone.0028071
  4. HIPAA, (2017). De-identification standard, Retrieved from: https://www.govinfo.gov/content/pkg/CFR-2017- title45-vol1/pdf/CFR2017-title45-vol1-sec164-514.pdf (accessed on 26 March 2023).
  5. ICO, (2021). How do we ensure anonymisation is effective? https://ico.org.uk/media/about-the-ico/documents/4018606/chapter-2-anonymisation-draft.pdf (accessed on 26 March 2023).
  6. IDStrong (2022). MyFitnessPal Breach: Learn About MyFitnessPal Hack. https://www.idstrong.com/sentinel/myfitnesspal-databreach/ (accessed on 26 March 2023.)
  7. Jassim, H., Atan, R., Jabar, M., & Abdullah, S. (2018). Factors and model for sensitive data management and protection in information systems’ decision of cloud environment. Journal of Theoretical and Applied Information Technology, 96, 8097–8108.
  8. Jiang, L., & Torra, V. (2022). On the Effects of Data Protection on Multi-database Data-Driven Models, Integrated Uncertainty in Knowledge Modelling and Decision Making, 226–238.
  9. Jin, X., Krishnan, R., & Sandhu, R. (2012). A unified attribute-based access control model covering DAC, MAC and RBAC. In Data and Applications Security and Privacy XXVI: 26th Annual IFIP WG 11.3 Conference, 26, 41-55.
  10. Kalloniatis, C., Mouratidis, H., Vassilis, M., Islam, S., Gritzalis, S., & Kavakli, E. (2014). Towards the design of secure and privacyoriented Information Systems in the Cloud: Identifying the major concepts. Computer Standards & Interfaces, 36(4), 759-775. https://doi.org/10.1016/j.csi.2013.12.010
APA
Şahin, Y., & Dogru, İ. (2023). An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization. International Journal of Engineering Research and Development, 15(2), 574-583. https://doi.org/10.29137/umagd.1272085
AMA
1.Şahin Y, Dogru İ. An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization. IJERAD. 2023;15(2):574-583. doi:10.29137/umagd.1272085
Chicago
Şahin, Yağmur, and İbrahim Dogru. 2023. “An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization”. International Journal of Engineering Research and Development 15 (2): 574-83. https://doi.org/10.29137/umagd.1272085.
EndNote
Şahin Y, Dogru İ (July 1, 2023) An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization. International Journal of Engineering Research and Development 15 2 574–583.
IEEE
[1]Y. Şahin and İ. Dogru, “An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization”, IJERAD, vol. 15, no. 2, pp. 574–583, July 2023, doi: 10.29137/umagd.1272085.
ISNAD
Şahin, Yağmur - Dogru, İbrahim. “An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization”. International Journal of Engineering Research and Development 15/2 (July 1, 2023): 574-583. https://doi.org/10.29137/umagd.1272085.
JAMA
1.Şahin Y, Dogru İ. An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization. IJERAD. 2023;15:574–583.
MLA
Şahin, Yağmur, and İbrahim Dogru. “An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization”. International Journal of Engineering Research and Development, vol. 15, no. 2, July 2023, pp. 574-83, doi:10.29137/umagd.1272085.
Vancouver
1.Yağmur Şahin, İbrahim Dogru. An Enterprise Data Privacy Governance Model: Security-Centric Multi-Model Data Anonymization. IJERAD. 2023 Jul. 1;15(2):574-83. doi:10.29137/umagd.1272085