The Public Sector LibreOffice Mandate
Across the European Union, government agencies are increasingly mandating open-source software. Italy, France, Germany, and Spain have formal policies favoring open-source alternatives. The European Commission's Open Source Software Strategy 2020-2023 explicitly promotes open-source adoption. Germany's Schleswig-Holstein announced migration of 25,000 government PCs to LibreOffice in 2024. The French Gendarmerie deployed GendBuntu (Ubuntu with LibreOffice) on over 77,000 workstations.
These organizations need GDPR-compliant document anonymization — but most PII redaction tools only support Microsoft Office.
anonym.legal's LibreOffice Extension fills this gap: the same 285+ entity type detection available in Writer, Calc, and Impress, on Windows, macOS, and Linux.
Why Open Source Matters for Data Protection
No vendor lock-in
Microsoft Office requires ongoing licensing (Microsoft 365 subscriptions). LibreOffice is free. For government agencies with thousands of desktops, this represents significant budget savings — but the decision often goes beyond cost.
Open-source software provides transparency: the source code is auditable. For agencies processing citizen data, the ability to inspect the tools they use is a governance requirement, not a preference.
Data sovereignty
Government agencies handling citizen data face strict data residency requirements. anonym.legal's infrastructure runs on Hetzner servers in Germany — data never leaves EU jurisdiction. Combined with LibreOffice (no Microsoft cloud dependencies), the entire document workflow stays within controlled environments.
GDPR Article 25: Data protection by design
GDPR Article 25 requires data protection by design and by default. Using PII anonymization tools integrated directly into the document editing workflow — rather than external copy-paste processes — is a stronger "by design" implementation. The anonymization step is part of the document lifecycle, not an afterthought.
Real-World Use Cases
Government DSAR Responses
When citizens submit Data Subject Access Requests (DSARs), agencies must provide copies of all personal data held — but must redact third-party PII (other citizens, staff names, case officers).
With the LibreOffice Extension:
- Open the response document in Writer
- Click Analyze to detect all PII
- Review in the preview dialog — accept third-party entities, reject the requester's data
- Apply anonymization
- Export and send
The preview dialog is critical here: DSARs require selective redaction (remove staff names, keep the requester's data), not blanket anonymization.
University Research Data
Research institutions processing study participant data must anonymize before publication or data sharing. The typical workflow:
- Collected data in spreadsheets (Calc) with participant names, IDs, contact information
- Interview transcripts in Writer with participant quotes containing identifying details
- Presentation slides (Impress) for conferences with case study data
The LibreOffice Extension handles all three document types with the same detection engine. Presets ensure consistent anonymization across the entire research dataset.
Court Document Redaction
Courts publishing decisions must redact party names, addresses, and identifying information. The LibreOffice Extension supports:
- Replace: Party names to PERSON_1, PERSON_2 (maintaining referential consistency within the document)
- Redact: Complete removal of addresses and contact details
- Mask: Partial masking of dates or case numbers where context must be preserved
Format preservation in Writer ensures that court document formatting — headers, footers, numbered paragraphs, indentation — remains intact after redaction.
Deployment in Public Sector Environments
Individual installation
For small teams or individual users:
- Download .oxt from anonym.legal/api/download/libreoffice
- Double-click to install
- Restart LibreOffice
Centralized deployment
For IT departments managing multiple workstations:
- Distribute the .oxt file via network share, SCCM, Ansible, or similar
- LibreOffice accepts silent extension installation via command line
- Presets can be standardized across the organization via shared anonym.legal accounts
Authentication
The extension supports zero-knowledge authentication — passwords are derived locally using Argon2id and never transmitted. For organizations requiring SSO integration, the web app provides an alternative access point with the same detection capabilities.
Compliance Mapping
| Requirement | How It's Met |
|---|---|
| GDPR Article 5(1)(c) — Data minimization | Only detected PII is modified; non-PII text unchanged |
| GDPR Article 25 — Data protection by design | Anonymization integrated into document editing workflow |
| GDPR Article 32 — Security of processing | AES-256-GCM encryption, ZK auth, ISO 27001 infrastructure |
| GDPR Recital 26 — Anonymization scope | Replace/Redact/Mask remove data from GDPR scope |
| GDPR Article 4(5) — Pseudonymization | Encrypt method provides reversible pseudonymization |
| BDSG Section 22 — Special categories | Entity type detection covers health, biometric, and ethnic data |
Getting Started for Public Sector
- Download the extension — free, no licensing
- Create an anonym.legal account — free tier includes 200 tokens/month
- Review full documentation — installation, features, troubleshooting
For organizations requiring higher volumes, paid plans start at EUR 3/month for 1,000 tokens.
Sources:
- European Commission Open Source Software Strategy 2020-2023
- Schleswig-Holstein, Germany — 25,000 government PC migration to LibreOffice (2024 announcement)
- French Gendarmerie — 77,000+ GendBuntu (Ubuntu/LibreOffice) workstations deployed by 2019
- GDPR Articles 4(5), 25, 32, Recital 26 — compliance framework
- BDSG Section 22 — German Federal Data Protection Act special categories