Your experience on the modern internet is defined by your personal data.
Some of this data is publicly available. Your username or your Twitter profile are what you outwardly project to the world for all to view. Your reviews on Yelp can sometimes even be found in a search engine.
Yet your private data says way more about you than your public data. This is sensitive data that can include anything from physical identifiers (IP addresses, physical addresses) to habits (your browsing history, your shopping history) and beyond. Should private data not stay private, it could do significant harm to the user and reveal things not meant to be public.
How Ozone Secures Your Private Data
At Ozone, we believe your private data should stay private. We also believe you should profit from said private data once it's been stripped of any/all identifiers that can lead back to you.
Before anonymizing data, however, we must talk about how we secure data in the first place:
Encryption: We are encrypting all stored data using AES-256 encryption keys — the same type of encryption used by banks, hospitals, and governments.
Encryption Key Management: We use a KMS (Key Management Service) to store all encryption keys separately from all data files. It would take a hacker several millennia to even attempt to brute force their way into our KMS.
User Encryption: All of our web user interfaces use https and TLS, which uses a “handshake” to authenticate both sides (ie. your computer and our website computers). Once the handshake is confirmed, it's encrypted using asymmetric encryption keys, and all communications then encrypted using a second symmetric encryption cipher.
User Best Practices: We require users to use a complicated password and encourage two-factor authentication, as well as Google Single-Sign-on for additional safeguards. This goes above and beyond traditional single/simple password protection from the user side.
Regular Audit: We hold a monthly audit of all systems and architectures.
How Ozone Anonymizes Your Private Data
Now that we've show how we secure your private data, we'll demonstrate how it's anonymized without ever identifying any datapoints to anyone other than you.
Beyond encryption, we substitute sensitive data with an identifier unique to every piece of data for every user. This means that each datapoint for each user is randomized, given a unique identifier, and then stored in a separate, secure database that maps each token to the relevant piece of data. This process, known as tokenization, makes it impossible for anyone other than you to know which datapoint is tied to your account directly. This makes it so the data seen by data brokers is truly anonymized.
As mentioned above, we go through regularly scheduled monthly audits of all of our systems, processes, and architectures. If there's a stronger method of encryption available to be used in the (near) future, we'll adopt it. Ozone cannot exist without user safety, security, and anonymization. As a team of people passionate about privacy and security, we want for our users the same strength and security we'd use for ourselves.
If you have any questions about Ozone and our security practices, feel free to reach out to email@example.com.