Privacy of user data is an important concern for businesses that store user data in a data warehouse. This disclosure describes multiple approaches to securely store data while maintaining compliance with privacy regulation and enabling use of the stored data for business analytics. The approaches include the separation of user identifiable information (UII) and non-UII data in a data warehouse via physical separation of the data, or use of views/tables that only store non-UII data. Further, a daily rotating userID is used to store data. The rotating userID can be created by cryptographically hashing a user identifier with a daily salt, data encryption by use of a daily global key, or by a table level key with hashing on data access using an expirable global salt. Still further special access privileges can be granted to system-level programs and tools that process UII data, along with preventing such programs/tools from outputting UII data.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.