The Challenge
A hospital research department needs to share patient outcome datasets with external academic partners for a multicenter clinical study. The datasets contain names, dates of admission, diagnoses, medication codes, and national patient IDs. Uploading to any cloud service risks GDPR Art. 9 special-category data violations and HIPAA PHI transmission requirements. No Business Associate Agreement has been established with the research partner's IT infrastructure.
The Solution
The research team installs anonym.plus on a workstation within the hospital's secure network. They use Batch mode to process the full patient dataset (XLSX format, 40,000 rows) using the Healthcare preset. All 18 HIPAA Safe Harbor identifiers are removed using the Replace operator. Health data is permanently replaced with structured labels: [PERSON_1], [DATE_1], [MEDICAL_RECORD_1]. The processing takes under 3 minutes. No data leaves the hospital network during processing.
The Results
- All 18 HIPAA Safe Harbor identifiers removed — Safe Harbor de-identification achieved
- Dataset exits GDPR Art. 9 scope — no longer health data under Recital 26
- No BAA required — anonym.plus is not a Business Associate; no PHI transmitted to any third party
- Dataset shared securely with academic partners via standard file transfer — no special data transfer agreement needed
- Processing history logged locally as documentation for DPIA and research ethics compliance
PHI Entity Types Detected
| HIPAA Category | anonym.plus Entity Type | Example |
|---|---|---|
| Names | PERSON | Dr. Maria Schmidt → [PERSON_1] |
| Dates | DATE_TIME | 03/15/1978 → [DATE_1] |
| Phone numbers | PHONE_NUMBER | +49 30 123456 → [PHONE_1] |
| Email addresses | EMAIL_ADDRESS | patient@clinic.de → [EMAIL_1] |
| SSN / National IDs | US_SSN, DE_TAX_ID, IN_AADHAAR | 123-45-6789 → [ID_1] |
| Medical record numbers | MEDICAL_LICENSE, Custom entity | MRN-78234 → [MRN_1] |
| IP addresses | IP_ADDRESS | 192.168.1.45 → [IP_1] |
| Geographic data | LOCATION, STREET_ADDRESS | Hauptstraße 12, Berlin → [LOCATION_1] |
Compliance Achieved
- HIPAA Safe Harbor (45 CFR §164.514(b)): All 18 identifiers removed. No actual knowledge of re-identification risk.
- GDPR Art. 9: Health data anonymized — no longer special-category personal data after Replace processing.
- GDPR Recital 26: Replace operator produces true anonymization — re-identification effectively impossible.
- No BAA required: anonym.plus is not a Business Associate. No PHI transmitted. No DPA (Art. 28) required.
- DPIA support: Local processing history provides audit trail for Data Protection Impact Assessment documentation.
Ready to try? Read the HIPAA de-identification guide →
Frequently Asked Questions
Does anonym.plus handle HIPAA-regulated patient records?
Yes. All 18 Safe Harbor PHI categories are covered by built-in entity types plus custom entity support. Processing is 100% offline. anonym.plus is not a Business Associate — no BAA required or available.
Does anonymizing with anonym.plus satisfy GDPR Article 9 for health data?
Yes. Once processed with Replace or Redact operators, health data is no longer personal data under GDPR Recital 26. Art. 9 special-category restrictions no longer apply to the anonymized output.
What file size can anonym.plus handle for large patient datasets?
XLSX: 20 MB / 100,000 rows. CSV: 30 MB. For larger datasets, split into batches. Batch mode processes up to 20 files in parallel (Pro plan).