Health App Analytics Anonymisation with anonym.plus

Healthcare Solution · Telehealth & Digital Health · UK GDPR Recital 26

Analytics anonymisation is the removal of personal data from the usage stream a health app records. Once it is truly anonymous, it is no longer personal data under UK GDPR Recital 26. anonym.plus does this on your device and keeps the behaviour patterns for product work.

When this applies

These streams track who tapped what, tied to a user identifier, email, and IP. For funnel analysis you want the behaviour, not the people behind it.

How anonym.plus handles it

1. Open the usage dump in anonym.plus on a local device.
2. It finds user identifiers, emails, IPs, and device handles.
3. Screen names and action types stay in place.
4. Swap the personal fields with the map switched off.
5. Save the anonymous file on your machine.

What you need to provide

• The usage dump (CSV, JSON, or NDJSON).
• Replace with the re-link map off for anonymity.
• Optional column map for user and session fields.

Patient data entity types detected

Compliance achieved

• True anonymity puts the records outside scope by UK GDPR Recital 26.
• User identifiers, emails, and IPs are caught as personal data.
• On-device work supports UK data residency.

Limitations & cautions

A usage trail can be unique even with no name, since a rare path through the app fingerprints one person. Coarsen timestamps and location, and keep no re-link key, before you treat the output as anonymous under the ICO motivated-intruder test.