Back to feed
National Law Review
National Law Review
6/18/2026
Why AI Is Changing Anonymized Data Rules

Why AI Is Changing Anonymized Data Rules

Short summary

AI systems can re-identify individuals from supposedly 'anonymous' data by correlating indirect signals like location and writing style across datasets. Regulators are shifting from asking 'Did we remove identifiers?' to 'Could a capable actor re-identify?' Companies must treat anonymization as degradable, requiring ongoing governance: recurring risk assessment, technical controls like differential privacy, and downstream use restrictions.

  • AI enables re-identification by correlating indirect signals across datasets, making traditional anonymization insufficient
  • Regulators now assess re-identification risk as an ongoing obligation, not a one-time anonymization step
  • Modern governance requires recurring risk assessment, technical controls (differential privacy, synthetic data), and use restrictions

Generated with AI, which can make mistakes.

Is this a good recommendation for you?

Explore more