SUE-duh-NIM-ih-ZAY-shun

Use it. Don’t spell it.

​

Say What?!

What is Pseudonymization?

• MORE data
• Protection of privacy
• Preservation of non-personal attributes
• Richer statistics
• Better informed decision-making
• Cousin to anonymization

Anonymization vs. Pseudonymization

​

• Removes data
• Protects privacy through removal of all links to a person
• Nothing to distinguish one patron from another

​

• Adds data
• Protects privacy by cloaking a person’s identity through a pseudonym
• Circ activities are preserved but not identified
• Libraries can determine which properties to preserve under a pseudonym

​

Anonymization vs. Pseudonymization

​

From old_issues

Name: anonymous

Date enrolled: dawn of catalogue

Category Code: System

Branch: unknown

Number of checkouts: 6 bazillion

​

From pseudonmized_transactions

Name: $2a$10$.ZT8nRFqqL7iCkO.

Date enrolled: Jan 6, 2022

Category Code: Resident

Branch: Main

Number of checkouts: 132

The Ocean State Libraries Experience

Let’s make a plan!

Time to reinstitute data retention and patron privacy!

1. Download historical data.
2. Obtain board approval.
3. Enable pseudonymization.
4. Pseudonymize historical transactions.
5. Edit reports.
6. Configure the clean_up cron.

Download historical data.

Obtain board approval.

1. Enable pseudonymization to store anonymized transactions.
2. Completed transactions that connect patrons to books should be deleted after 16 weeks.

Enable Pseudonymization.

You can do it!

Pseudonymize historical transactions.

ByWater to the Rescue!

Optimize the pseudo job.

Test server hack.

Edit reports.

SELECT *

FROM saved_sql

WHERE savedsql LIKE ‘%statistics%’

Configure the clean up cron.

Borrower -/- Item after 16 weeks

• Statistics (issue, renew)
• Old_issues (completed checkouts)
• Old_reserves (completed holds)
• Message_queue (notices)
• Other places?

Relax!

The right way to pseudonymize…

From the start!

​

With a worksheet to guide data retention discussions that can happen later.

Other thoughts on pseudonymization

Bettah!

Add borrower age bands -- juvenile, young adult, adult -- to align with IMLS definitions.

Divide the issue (checkout) transaction type into “browsing checkouts” and “filled hold checkouts” to allow for advanced statistical analysis.

Get buggy with it

• Pseudonymize script gunks everything up
• https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=39301
• Add ILL pseudonymization
• https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=37901
• Deletion Cron is more configurable to account for pseudonymization:
• https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=32440

This one is Steve’s fault

There will be no questions.

Are there any questions?

​

Thank you!

Valerie Burnett (she/her)

Data Migration Librarian

Bywater Solutions

valerie@bywatersolutions.com

Stephen Spohn (he/him)

Executive Director

Ocean State Libraries

sspohn@oslri.net

Presentation Description

Pseudonymization allows a Koha library to create a copy of circulation statistics that anonymize borrower information while retaining useful statistical details like borrower ZIP code, empowering the library to easily make more sophisticated data queries of their circulation history. Pseudonymization also supports library efforts to protect patron privacy. Libraries who choose to only keep recent transactions can rely on “pseudonymized” statistics that may be kept in perpetuity.

​

Ocean State Libraries chose to implement pseudonymization almost two years post-launch. OSL was finally ready to prune historical transactions and use pseudonymization to create a simple place for its members to run custom queries. However, as you’ll learn from the presenters, doing so “post-launch” created challenges for OSL and their host, ByWater Solutions.

​

Presenters Valerie Burnett (ByWater Solutions) and Stephen Spohn (Ocean State Libraries) will provide an overview of pseudonymization, some pros and cons, recent improvements, current bugs, and a riveting case study of implementation in a large consortium more than two years after go-live.

Presentation Outline

1. What is “PS”? - V
2. What isn’t it? - S
1. Not about losing data!!!
3. The OSL Experience… or what NOT to do - V, S, V
• One day… a ticket. -V
• Interval at OSL - Data Retention and Patron Privacy - S
• ByWater to the Rescue - Historical pseudonymization script enhancements. - V
• Meanwhile, back at OSL - fresh queries - S
• ByWater to the Rescue - Test server hack. - V
• Pseudonymized_transactions - S
• Clean_up.py - S
1. ByWater to the rescue - multiple crons running - V
4. And that was a whole lot! - S
5. The Right Way to Do It! - V
• Turn it on… all fields.
• Consider patron attributes.
• When it doubt, do it.
• Later…
• Data retention and patron privacy
• When ready… reach out to your provider:
• Discussion points for the clean_up.py