Choosing the right salt to pseudo-anonymize data and be GDPR compliant
In my company, numeric user IDs are considered PIIs and therefore need to be pseudo-anonymized to be GDPR compliant.
To do so, we populate a lookup table where to each ID is assigned a monotonically decreasing gdpr_ID. Then when users are …