Analytics anonymization is the removal of personal data from the usage stream a health app records. Once it is truly anonymous, it is no longer personal data under GDPR Recital 26. anonym.plus does this on your device and keeps the behaviour patterns for product work.
When this applies
These streams track who tapped what, tied to a user ID, email, and IP. For funnel analysis you want the behaviour, not the people behind it.
How anonym.plus handles it
- Open the usage dump in anonym.plus on a local device.
- It finds user IDs, emails, IPs, and device handles.
- Screen names and action types stay in place.
- Swap the personal fields with the map switched off.
- Save the anonymous file on your machine.
What you need to provide
- The usage dump (CSV, JSON, or NDJSON).
- Replace with the re-link map off for anonymity.
- Optional column map for user and session fields.
PHI entity types detected
| Category | anonym.plus entity type | Example |
|---|---|---|
| Identifiers | ID | user_id → [USER] |
| Contact | EMAIL_ADDRESS | profile email → [EMAIL] |
| Network | IP_ADDRESS | 198.51.100.9 → [IP] |
| Identifiers | ID | device handle → [DEVICE] |
| Dates | DATE_TIME | action time → [TIME] |
| Location | LOCATION | geo region → [PLACE] |
Compliance achieved
- True anonymity puts the records outside scope by GDPR Recital 26.
- User IDs, emails, and IPs are caught as personal data.
- On-device work supports EU data residency.
Anonymize health app analytics offline — see plans & start free →
Limitations & cautions
A usage trail can be unique even with no name, since a rare path through the app fingerprints one person. Coarsen timestamps and geo, and keep no re-link key, before you treat the output as anonymous.
Frequently asked questions
When is this stream truly anonymous?
When no one can reasonably re-identify it. That means no kept key and low residual risk from a unique behaviour trail.
Is a user ID personal data if it is just a number?
Yes. A stable user ID singles out one person, so it counts as personal data even without a name attached.
Can I keep the funnel steps?
Yes. Action types and screen flow stay. Only the personal handles are removed.