anonym.legal

By · Last updated 2026-05-09

返回博客GDPR 与合规

DPO 合规必备:匿名化工具 GDPR 第 28 条供应商评估清单

GDPR 第 35 条要求对高风险处理活动进行数据保护影响评估(DPIA)。ISO 27001 认证可将安全调查问卷的处理时间缩短 73%。

May 9, 20269 分钟阅读
DPO GDPR vendor assessmentGDPR Article 28 checklistDPIA anonymization toolISO 27001 procurementdata processor evaluation

DPO 为何必须评估匿名化工具

GDPR 要求对高风险处理活动开展数据保护影响评估(DPIA)。大规模个人数据处理属于高风险活动,匿名化工具作为数据处理者,受处理者相关规则约束,上线前必须完成评估。

合规的核心有两点:处理者须提供「充分的安全保障」;所有处理活动须以书面合同为依据。作为 DPO,你需要记录工具的安全控制措施、分包处理者情况、文件托管地点、数据泄露处理机制以及数据处理协议(DPA)。

ISO 27001 认证可大幅减轻评估工作量。BSI 研究发现,获得认证的企业在安全调查问卷上的处理时间可缩短 73%;Gartner 数据显示,78% 的财富 500 强企业在采购招标中要求供应商持有 ISO 27001 认证。选择已认证工具,你可以直接引用认证证书,无需逐项核查控制措施;未认证工具则需要更大量的人工审查。

请参阅我们的合规概览安全页面,了解我们如何满足上述要求。

七项核查要点

以下清单适用于任何匿名化工具或供应商的评估工作。

**1. 数据处理协议(DPA)。**是否签署了符合 GDPR 要求的 DPA?协议应涵盖:仅按你的指令处理数据、尽职保护义务、安全措施、分包处理者管控、协助履行数据主体权利、数据归还或销毁、审计权利。

**2. 安全文档。**安全措施是否有书面记录?ISO 27001 认证供应商可提供认证证书及适用性声明(SoA),该文件即可满足审查要求。

**3. 分包处理者名单。**工具是否使用了分包处理者?相关方是否已明确列明?你有权要求提前获知任何变更通知。云服务商、CDN 和 OCR 工具均属于分包处理者,未披露的分包处理者是常见的合规漏洞。

**4. 文件托管地点。**你的数据是否托管在欧盟境内?对于欧盟企业而言,欧盟境内托管是最简便的合规路径。零知识工具同样合规——数据完全不离开你的设备。采用美国供应商则需要标准合同条款(SCC)。

**5. 数据泄露通知机制。**供应商将在多长时间内通知你泄露事件?GDPR 要求在 72 小时内向监管机构报告,而供应商必须在此之前告知你。请确认 DPA 中已明确写入这一条款。

**6. 供应商自身 DPIA。**供应商是否已完成自身的 DPIA?你是否可以查阅?若供应商缺少 DPIA,将直接影响你自身记录的完整性——这是常见的合规缺口。

**7. 删除权与数据携带权。**供应商是否能够协助处理删除权和数据携带权请求?零知识工具不存储任何文件,删除权请求可能不适用,但 DPIA 中须对此作出明确说明。

优质供应商应能提供四份文件:ISO 27001 认证证书、欧盟托管证明、其自身 DPIA 副本以及已签署的 DPA。这四份文件可填补你自身 DPIA 中的所有空白,足以通过监管审查。

请参阅我们的 DPO 常见问答,了解供应商评估中的常见问题解答。

参考来源

相关文章

GDPR 与合规

Japan My Number: Verhoeff & APPI

63% of generic tools fail My Number detection in Japanese documents. My Number uses Verhoeff algorithm — the most complex national ID checksum in Asia.

GDPR 与合规

HDPA Greece: AFM & AMKA Detection

Greek AFM detected with 52% accuracy by generic tools. HDPA issued 89 decisions in 2024 — up 162% from 2022. Tourism and maritime sectors face distinct.

GDPR 与合规

NAIH Hungary: TAJ-Szám and Adóazonosító Jel

Hungarian NER accuracy is 67% vs. EU average 82% — NAIH's 2024 assessment. TAJ-szám weighted checksum and adóazonosító jel detection gaps.

准备好保护您的数据了吗?

开始使用 285 种实体类型在 48 种语言中匿名化 PII。

开始免费试用查看功能

About this page

We update this page when our platform or the law changes.

Read our founder note for how we work.

Each change shows up in the timestamp at the top.

Related reading

We follow these rules

  • GDPR (EU 2016/679).
  • ISO/IEC 27001:2022.
  • NIS2 (EU 2022/2555).
  • HIPAA safe harbor under 45 CFR § 164.514(b)(2).

Our promise

We do not sell your data.

We do not train models on your text.

We store your files in Germany.

You can delete your account at any time.

You own your work.

Where we run

Our servers live in Falkenstein, Germany.

We use Hetzner. They hold ISO 27001 certification.

All data stays in the EU.

Backups run every day.

Need help?

Email support@anonym.legal.

We reply within one business day.

How we test

We run a full check suite on every release.

Each surface gets its own sweep script and report.

Human reviewers spot-check the output each week.

We track recall and precision on a labelled set.

Bad runs block the deploy.

What we never do

  • We never sell your information to third parties.
  • We never train models on what you upload.
  • We never keep your work after you delete it.
  • We never share keys with any outside firm.
  • We never run ads inside the product.

Plans in plain words

We sell credits, not seats.

One credit covers one short job.

Long jobs use a few credits each.

You can top up at any time.

Unused credits roll over each month.

Read the plans page for current rates.

Who built this

A small team of engineers and lawyers built this.

We ship from Europe and work in the open.

Our founder note spells out why we started.

Where to start

How the parts fit

A browser add-on cleans text inside Chrome.

A Word plug-in handles drafts in Office.

A small desktop tool works on whole folders.

An agent protocol link feeds large models safely.

All four share one core engine and one rule set.

Words from our team

We started this work after a lunch about cookies.

One friend kept getting odd ads on her phone.

We asked why a court file leaked through a draft.

We sketched the first build on a napkin that week.

By month three we had a tiny demo for a friend.

She used it on her first case the next day.

Common questions we hear

Can the tool read scanned PDFs? Yes, with OCR.

Does it work on long files? Yes, in small chunks.

Can I roll my own rule set? Yes, save it as a preset.

Does it run offline? The desktop build runs offline.

Do you keep my files? No, the cloud build wipes after each run.

Will it learn from my work? No, we never train on inputs.

A short tour of the workflow

Upload a file or paste a snippet of prose.

Pick the entities you want gone from the draft.

Choose a method: replace, mask, hash, encrypt, or redact.

Press run and watch the side panel show each hit.

Skim the result and tweak any rule that misfired.

Save the cleaned file or send it to a teammate.