Data protection - How can I apply grouping using @DeepPersonalData

I’m using data-protection module for encrypting the sensitive data. I have two user and their personal data. I want to group them by userid to encrypt sensitive information of an user by their userId.

This is my event

public class SentFriendRequestEvent {
    @DataSubjectId(group = "SENDER")
    private final String playerId;
    private final UserInformation playerUserInformation;
    private final DeviceInformation deviceInformation;
    @DataSubjectId(group = "RECIPIENT")
    private final String recipientPlayerId;
    private final UserInformation recipientUserInformation;

I don’t see any group attribute for @DeepPersonalData annotation.
How can I ensure recipientUserInformation is encrypted using recipientPlayerId?
How can I ensure playerUserInformation is encrypted using playerId?
Is there any other way to achieve this?

It seems like currently, this is not possible. A workaround would be to have the UserInformation on the sendFriendRequest directly and have something like:

@PersonalData(group = "SENDER")
private final String senderName;

Thanks for your answer and workaround recommendation Gerard.

I now have a better understanding of the data protection module. It’s likely more neat and maintainable to add the id field to the UserInformation. This way both the @DataSubjectId and @PersonalData end up in the same class.

1 Like

The annotation is not taking effect unless it is an event object, so we end up in using @SerializedPersonalData to encrypt the entire UserInformation object.

1 Like