Kung Ano ang Nakakalimutan ng Presidio: Ang 220+ Entity Types na Kailangan para sa GDPR Compliance
Ang GDPR ay hindi nag-define ng 'PII' sa integrated list. Ang ito ay nag-rely sa regulatory convergence across 27 EU member states plus EEA countries, bawat isa ay may sarili nitong government ID formats, social security number schemes, at healthcare identifiers.
Ang Presidio ay may comprehensive coverage ng universal PII: pangalan, email, IP address, credit card, social security number. Ngunit ang EU-specific na entity types ay nag-require ng granular na solusyon:
Ang 220+ Missing EU Entity Types
Government ID (45 types):
- German Personalausweis (ID number + facial recognition data)
- French NIR (National Insurance Registry — tripartite structure)
- Italian codice fiscale (13-character tax ID with gender/birthplace encoding)
- Spanish DNI (8 digits + control letter) at NIE (foreigner identifier)
- Belgian ID card number
- Dutch BSN (11-digit check digit algorithm)
- Polish PESEL (date-of-birth + gender encoding)
- Czech rodné číslo (gender + birthplace encoding)
- Hungarian TAJ-szám (10-digit healthcare ID)
- Greek AFM (4-digit area code)
- ... plus 35 more across regional variations
Healthcare (32 types):
- Swedish personnummer (Luhn check digit)
- Danish CPR (modulus-11 algorithm)
- Finnish henkilötunnus (Luhn check, gender digit)
- Norwegian personnummer
- Greek AMKA (health ID + age encoding)
- ... plus 27 more
Financial (18 types):
- IBAN validation per country (23-34 character formats)
- BIC (Bank Identifier Code)
- Tax ID numbers beyond US EIN
Ang Presidio ay may generic regex recognizers para sa ilan sa mga ito, ngunit walang semantic validation. Isang random 11-digit sequence ay makakaarugal sa Dutch BSN check digit algorithm at magiging false positive. Ang GDPR compliance ay nangangailangan ng country-specific precision.