Self-destructing data to protect personal details
By Stewart Mitchell
Posted on 18 Jun 2010 at 16:23
A Dutch scientist has developed a system of deleting private details from databases automatically with pre-set time bombs that ensure redundant personal data is not left festering on company hard drives.
Dr Harold van Heerde of the Centre for Telematics and Information Technology at the University of Twente says his database software allows information to degrade as it becomes less relevant to the company or organisation holding the data.
The system, the scientist claims, means there would be far less danger of legacy details being leaked in a security breach.
Service providers that collect data can use this as a marketing tool, with a logo or badge showing that they responsibly delete data as it goes out of date
“A lot of data becomes increasingly less valuable for a service provider over time, but they tend to keep it and often don't take sufficient precautions to protect it, so there is no balance between the value of the data and privacy risk,” van Heerde told PC Pro.
“The idea with this is that data is deleted according to a timetable so that consumers can better trust the companies that retain personal information.”
Van Heerde said his prototype could be programmed to delete in a systematic manner to comply with data retention laws or privacy policies.
“Everything starts with the policy and you could say that after one month this value must be removed or after six months all the data must be removed,” he said. “It can be ongoing, so a company can keep what they think is relevant for longer, but remove, say, personally identifiable data much sooner.”
Van Heerde said his work had proved the feasibility of the concept but that software companies would need to take on the baton to turn the concept into a commercial product.
“Hopefully, one day service providers that collect data can use this as a marketing tool, with a logo or badge showing that they responsibly delete data as it goes out of date,” he said.
From around the web
But a company will have to change its database. Apart from the expense, its the companies who are so obsessed with holding all our data, forever.
You could argue it will give consumers the choice of who to deal with, but with near-monoplies like Google, Facebook, ebay, etc, there is no real choice.
By davidsoap on 19 Jun 2010 
If companies really wanted to they'd implement this "concept" in no time at all. They just need to create a scheduled task that looks for old data and removes it.
By peterm2k on 21 Jun 2010
advertisement
- How to install Internet Explorer 9
- Maintaining and supporting IE9
- Plan your deployment
- Creating a custom browser package
- Search in corporate environments
- Chrome's shine getting lost in translation
- BytePac: the cardboard hard disk enclosure
- How tech loosens our grip on reality
- Hokum watch: Safer Internet Day
- Why I'm deleting Adobe from my PC
- Prepare to be patronised: it's Safer Internet Day
- Dear Sony, Samsung and every other tech company in the world: stop trying to be Apple
- Will Apple's Final Cut Pro X update placate the pros?
- Smartr Contacts for iPhone review
- Switching to Office 365's Outlook Web App
- Paying for your crimes with Bitcoin
- Pavement hacking: What it is and how to avoid it
- Google's risky pre-loaded pages
- Mac under attack: how secure is Apple's OS?
- Has your browser been hijacked?
- Can you send a truly anonymous email?
- Is it safe to send bank details over email?
- Sainsbury's Bank bans password storage
- MobileMe triggers credit card blocks
- How to stay safe against session hijacking
advertisement
Printed from www.pcpro.co.uk