NIST Issues Final Report on De-Identification of Personally Identifiable Information | Practical Law

NIST Issues Final Report on De-Identification of Personally Identifiable Information | Practical Law

The National Institute of Standards and Technology (NIST) released its final De-Identification of Personal Information report, NISTIR 8053, which provides an overview of de-identification issues and terminology.

NIST Issues Final Report on De-Identification of Personally Identifiable Information

Practical Law Legal Update w-000-7267 (Approx. 2 pages)

NIST Issues Final Report on De-Identification of Personally Identifiable Information

by Practical Law Intellectual Property & Technology
Published on 30 Oct 2015USA (National/Federal)
The National Institute of Standards and Technology (NIST) released its final De-Identification of Personal Information report, NISTIR 8053, which provides an overview of de-identification issues and terminology.
In October 2015, the National Institute of Standards and Technology (NIST) released its final De-Identification of Personal Information report, NISTIR 8053, which provides an overview of issues and terminology concerning the removal of personally identifiable information from data to protect individuals' privacy.
The report addresses:
  • The motivation for de-identification, the effectiveness of de-identification, and models for sharing de-identified data.
  • Approaches for de-identifying and re-identifying structured data.
  • The challenges in de-identifying unstructured data.
Among other things, the report concludes that there is a clear need for standards and assessment techniques to address the breadth of data and risks of improper de-identification procedures and techniques.
For more information on the draft report released on April 7, 2015, see Legal Update, NIST Releases Draft Report on De-identification of PII for Comment.