# Welcome to Paul's Boutique!


This is a 4 hours workshop that demonstrates various anonymization techniques using the [PostgreSQL Anonymizer] extension.

[PostgreSQL Anonymizer]: https://labs.dalibo.com/postgresql_anonymizer

## The Story


![Paul's boutique](img/boutique.jpg)

---

Paul's boutique has a lot of customers. Paul asks his friend Pierre, a Data Scientist, to make some 
statistics about his clients (average age, etc.). 

Pierre wants a direct access to the database in order to write SQL queries. 

---

Jack is an employee of Paul. He is in charge of relationship with the various suppliers of the shop. 

Paul respects his suppliers privacy. He needs to hide the personnal information to Pierre, but 
Jack needs read and write access the real data.

## Objectives

Using the simple example above, we will learn:

* How to write masking rules
* The difference between static and dynamic masking
* Implementing advanced masking techniques

## About PostgreSQL Anonymizer

![](./img/logo.png)

---

`postgresql_anonymizer` is an extension to mask or replace
[personally identifiable information] (PII) or commercially sensitive data from
a PostgreSQL database.

---

The project has a **declarative approach** of anonymization. This means you can
[declare the masking rules] using the PostgreSQL Data Definition Language (DDL)
and specify your anonymization strategy inside the table definition itself.

---

Once the maskings rules are defined, you can access the anonymized data in 4
different ways:

* [Static Masking]: Remove the PII according to the rules
* [Dynamic Masking]: Hide PII only for the masked users
* [Anonymous Dumps]: Simply export the masked data into an SQL file
* [Generalization]: Create "blurred views" of the original data


[INSTALL.md]: https://postgresql-anonymizer.readthedocs.io/en/stable/INSTALL/
[Concepts]: https://postgresql-anonymizer.readthedocs.io/en/stable/concepts/
[personally identifiable information]: https://en.wikipedia.org/wiki/Personally_identifiable_information
[declare the masking rules]: https://postgresql-anonymizer.readthedocs.io/en/stable/declare_masking_rules/

[Anonymous Dumps]: https://postgresql-anonymizer.readthedocs.io/en/stable/anonymous_dumps/
[Static Masking]: https://postgresql-anonymizer.readthedocs.io/en/stable/static_masking/
[Dynamic Masking]: https://postgresql-anonymizer.readthedocs.io/en/stable/dynamic_masking/
[Masking Functions]: https://postgresql-anonymizer.readthedocs.io/en/stable/masking_functions/
[Generalization]: https://postgresql-anonymizer.readthedocs.io/en/stable/generalization/
[detection]: https://postgresql-anonymizer.readthedocs.io/en/stable/detection/


## About GDPR

This presentation does not go into the details of the GPDR act and the general concepts of anonymization.

For more information about it, please refer to the talk below:

* [Anonymisation, Au-delà du RGPD] (Video / French)
* [Anonymization, Beyond GDPR] (PDF / english) 

[Anonymisation, Au-delà du RGPD]: https://www.youtube.com/watch?v=KGSlp4UygdU
[Anonymization, Beyond GDPR]: https://public.dalibo.com/exports/conferences/_archives/_2019/20191016_anonymisation_beyond_GDPR/anonymisation_beyond_gdpr.pdf


## Requirements

In order to make this workshop, you will need:

* A PostgreSQL instance
* The PostgreSQL Anonymizer (anon) extension, installed and initialized by a superuser
* A database named "boutique" owned by a **superuser** called "paul"
* A role "pierre" and a role "jack", both allowed to connect to the database "boutique"

---

> HINT: Check out the [INSTALL section] in the [documentation] to learn how to install the extension in your PostgreSQL instance.

[documentation]: https://postgresql-anonymizer.readthedocs.io/en/stable/
[INSTALL section]: https://postgresql-anonymizer.readthedocs.io/en/stable/INSTALL.html

## The Sample database

We will work on a database called "boutique", with 3 differents users:

```sql
CREATE ROLE paul LOGIN SUPERUSER;
CREATE ROLE pierre LOGIN;
CREATE ROLE jack LOGIN;

-- Define a password for each user with:
-- \password paul  or  ALTER ROLE paul PASSWORD 'change-me';

CREATE DATABASE boutique OWNER paul;
ALTER DATABASE boutique 
  SET session_preload_libraries = 'anon';
```

Unless stated otherwise, all commands must be executed with the role "paul".

## Authors

This workshop is a collective work from Damien Clochard, Be Hai Tran, Florent Jardin, Frédéric Yhuel.

## License

This document is distributed under the PostgreSQL license.

The source is available at 

https://gitlab.com/dalibo/postgresql_anonymizer/-/tree/master/docs/how-to


## Credits


* Cover photo by Alex Conchillos from Pexels (CC Zero)
* Paul's Boutique is the second studio album by American hip hop group Beastie Boys, 
  released on July 25, 1989 by Capitol Records
