Skip to content
Blockchain

Why does putting personal data on a blockchain make deletion legally impossible?

81

Oportunidad

GDPR Article 17 gives people the right to have their personal data erased, but public and permissioned blockchains are append-only by design, so any personal data written on-chain stays there permanently. The two workarounds in use today are storing only a hash and deleting the encryption key, or keeping data off-chain with only a pointer on-chain. Neither is legally settled: regulators have not confirmed that key deletion satisfies the right to erasure, and off-chain pointers can break silently when the backing store changes. The European Data Protection Board issued Guidelines 02/2025 explicitly flagging this conflict between blockchain immutability and GDPR storage limitation principles but stopped short of providing a technical resolution. Every tokenized asset, on-chain identity, and DeFi protocol that touches regulated personal data now carries this unresolved liability.

Por qué importa

A legally accepted primitive for selective on-chain erasure is what lets regulated financial data, medical records, and identity credentials live on ledgers without creating permanent compliance exposure.

Cómo evalúo la oportunidad

La Puntuación de Oportunidad es mi propia lectura, no una medición: cuánto duele, con qué frecuencia aparece y qué tan poco existe para resolverlo hoy. Un valor más alto significa que creo que vale más la pena construirlo.

Gravedad8/10

Cuánto dolor causa cuando aparece.

Frecuencia7/10

Con qué frecuencia la gente se topa con ello.

Espacio en blanco8/10

Qué tan pocas herramientas buenas existen para ello hoy.

Más problemas que vale la pena resolver