<meta charset="UTF-8">
<meta name="robots" content="noindex,nofollow" />
<link rel="shortcut icon" type="image/x-icon" href="/wiki/images/favicon.ico" />
<link rel="icon" type="image/x-icon" href="/wiki/images/favicon.ico" />

<pre>
!!! Overview
__The solution that discloses the least amount of identifying information and best limits its use is the most stable long-term solution.__

[{$pagename}] is a [Law] defined in the [The Seven Laws Of Identity].

We should build systems that employ identifying information on the basis that a breach is always possible. Such a breach represents a risk. To mitigate risk, it is best to acquire information only on a &quot;[need to know]&quot; basis, and to retain it only on a “need to retain” basis. By following these practices, we can ensure the least possible damage in the event of a [breach].

At the same time, the value of identifying information decreases as the amount decreases. A system built with the principles of information minimalism is therefore a less attractive target for identity theft, reducing [risk] even further.

By limiting use to an explicit scenario (in conjunction with the use policy described in the [Law of Control|Law of User Control and Consent]), the effectiveness of the “need to know” principle in reducing [risk] is further magnified. There is no longer the possibility of collecting and keeping information “just in case” it might one day be required.

The concept of “least identifying information” should be taken as meaning not only the fewest number of [claims], but the information least likely to identify a given individual across multiple contexts. For example, if a scenario requires proof of being a certain age, then it is better to acquire and store the age category rather than the birth date. Date of birth is more likely, in association with other [claims], to uniquely identify a subject, and so represents “more identifying information” which should be avoided if it is not needed.

In the same way, [unique Identifiers] that can be reused in other [contexts] (for example, drivers’ license numbers, Social Security Numbers, and the like) represent “more identifying information” than unique special-purpose identifiers that do not cross context. In this sense, acquiring and storing a [Social Security Number] represents a much greater risk than assigning a randomly generated student or employee number.

Numerous identity catastrophes have occurred where this law has been broken.

We can also express the Law of [{$pagename}] this way: aggregation of identifying information also aggregates risk. To minimize [risk], minimize aggregation.

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]


</pre>