Knogin
[Domínios API]

Erasure Domain

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow.

Metadados do modulo

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow.

Voltar a Todos os Módulos

Referencia de origem

content/modules/domain-erasure.md

Última Atualização

24 de fev. de 2026

Categoria

Domínios API

Checksum do conteudo

4a1985a5adb0fa21

Etiquetas

api-domains

Documentacao renderizada

Esta pagina renderiza o Markdown e Mermaid do modulo diretamente da fonte publica de documentacao.

Overview#

The Erasure domain implements the GDPR Article 17 right-to-be-forgotten workflow. It manages the full erasure lifecycle: request submission with identity verification, legal hold checking, PII anonymisation across user records and audit events, and tamper-evident receipt generation. The system preserves audit trail integrity per GDPR Article 17(3)(e) by anonymising actor fields rather than deleting audit rows.

Key Features#

  • GDPR Article 17 erasure request submission with identity verification
  • Legal hold checking before erasure execution
  • PII anonymisation across user records and audit events
  • Tamper-evident erasure receipt generation
  • Deterministic anonymisation placeholders for data consistency
  • Blind index-based email lookup for subject identification
  • Audit trail preservation through field anonymisation rather than row deletion
  • Erasure lifecycle management (request, verification, execution, receipt)

Use Cases#

  1. Processing GDPR right-to-be-forgotten requests with legal hold verification
  2. Anonymising PII across user records while preserving audit trail integrity
  3. Generating tamper-evident receipts for completed erasure operations
  4. Managing the complete erasure lifecycle from request through verification

Integration#

Integrates with user management, audit trail, and legal hold systems for GDPR-compliant data erasure workflows.

Last Reviewed: 2026-02-24