Daily activity locations k-anonymity for the evaluation of disclosure risk of individual GPS datasets

Jue Wang; Mei-Po Kwan

doi:10.1186/s12942-020-00201-9

Daily activity locations k-anonymity for the evaluation of disclosure risk of individual GPS datasets

Int J Health Geogr. 2020 Mar 5;19(1):7. doi: 10.1186/s12942-020-00201-9.

Authors

Jue Wang¹, Mei-Po Kwan^{2

3

4}

Affiliations

¹ Department of Geography, University of Toronto Mississauga, 3359 Mississauga Road, Mississauga, ON, L5L 1C6, Canada. gis.wang@utoronto.ca.
² Department of Geography and Resource Management, The Chinese University of Hong Kong, Shatin, Hong Kong, China.
³ Institute of Space and Earth Information Science, The Chinese University of Hong Kong, Shatin, Hong Kong, China.
⁴ Department of Human Geography and Spatial Planning, Utrecht University, 3584 CB, Utrecht, The Netherlands.

Abstract

Background: Personal privacy is a significant concern in the era of big data. In the field of health geography, personal health data are collected with geographic location information which may increase disclosure risk and threaten personal geoprivacy. Geomasking is used to protect individuals' geoprivacy by masking the geographic location information, and spatial k-anonymity is widely used to measure the disclosure risk after geomasking is applied. With the emergence of individual GPS trajectory datasets that contains large volumes of confidential geospatial information, disclosure risk can no longer be comprehensively assessed by the spatial k-anonymity method.

Methods: This study proposes and develops daily activity locations (DAL) k-anonymity as a new method for evaluating the disclosure risk of GPS data. Instead of calculating disclosure risk based on only one geographic location (e.g., home) of an individual, the new DAL k-anonymity is a composite evaluation of disclosure risk based on all activity locations of an individual and the time he/she spends at each location abstracted from GPS datasets. With a simulated individual GPS dataset, we present case studies of applying DAL k-anonymity in various scenarios to investigate its performance. The results of applying DAL k-anonymity are also compared with those obtained with spatial k-anonymity under these scenarios.

Results: The results of this study indicate that DAL k-anonymity provides a better estimation of the disclosure risk than does spatial k-anonymity. In various case-study scenarios of individual GPS data, DAL k-anonymity provides a more effective method for evaluating the disclosure risk by considering the probability of re-identifying an individual's home and all the other daily activity locations.

Conclusions: This new method provides a quantitative means for understanding the disclosure risk of sharing or publishing GPS data. It also helps shed new light on the development of new geomasking methods for GPS datasets. Ultimately, the findings of this study will help to protect individual geoprivacy while benefiting the research community by promoting and facilitating geospatial data sharing.

Keywords: Confidential geospatial data; GPS datasets; Geomasking; Geoprivacy; k-anonymity.

Publication types

Research Support, Non-U.S. Gov't
Research Support, U.S. Gov't, Non-P.H.S.

MeSH terms

Activities of Daily Living*
Confidentiality*
Disclosure
Female
Geographic Information Systems* / statistics & numerical data
Humans
Male
Privacy
Risk