Knogin
[API-Domänen]

Erasure Domain

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow.

Modulmetadaten

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow.

Zurück zur Liste

Quellreferenz

content/modules/domain-erasure.md

Letzte Aktualisierung

24. Feb. 2026

Kategorie

API-Domänen

Inhaltsprufsumme

4a1985a5adb0fa21

Tags

api-domains

Gerenderte Dokumentation

Diese Seite rendert das Markdown und Mermaid des Moduls direkt aus der offentlichen Dokumentationsquelle.

Overview#

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow. It manages the full erasure lifecycle: request submission with identity verification, legal hold checking, PII anonymisation across user records and audit events, and tamper-evident receipt generation. The system preserves audit trail integrity per GDPR Article 17(3)(e) by anonymising actor fields rather than deleting audit rows.

Key Features#

  • GDPR Article 17 erasure request submission with identity verification
  • Legal hold checking before erasure execution
  • PII anonymisation across user records and audit events
  • Tamper-evident erasure receipt generation
  • Deterministic anonymisation placeholders for data consistency
  • Blind index-based email lookup for subject identification
  • Audit trail preservation through field anonymisation rather than row deletion
  • Erasure lifecycle management (request, verification, execution, receipt)

Use Cases#

  1. Processing GDPR right-to-be-forgotten requests with legal hold verification
  2. Anonymising PII across user records while preserving audit trail integrity
  3. Generating tamper-evident receipts for completed erasure operations
  4. Managing the complete erasure lifecycle from request through verification

Integration#

Integrates with user management, audit trail, and legal hold systems for GDPR-compliant data erasure workflows.

Last Reviewed: 2026-02-24