As the demand for government-held data increases, institutions require effective processes and techniques for removing personal information. An important tool in this regard is de-identification. “De-identification” is the general term for the process of removing personal information from a record or data set.
De-identification protects the privacy of individuals because once de-identified, a data set is considered to no longer contain personal information. If a data set does not contain personal information, its use or disclosure cannot violate the privacy of individuals. Accordingly, the privacy protection provisions of the Freedom of Information and Protection of Privacy Act and Municipal Freedom of Information and Protection of Privacy Act would not apply to de-identified information.
Our guidelines introduce the basic concepts and techniques of de-identification, key issues to consider when de-identifying personal information in the form of structured data, and processes for removing personal information from data sets.