{
  "id": "SD6-01-slave-to-the-algorithm-why-a-right-to-an-explanation-is-prob",
  "type": "case-study",
  "title": "Slave to the Algorithm? Why a 'right to an explanation' is probably not the remedy you are looking for",
  "description": "Research-backed case study: Slave to the Algorithm? Why a 'right to an explanation' is probably not the remedy you are looking for. Analysis of KN [.legal]",
  "url": "https://anonym.community/anonym.legal/SD6-01-slave-to-the-algorithm-why-a-right-to-an-explanation-is-prob.html",
  "product": "anonym.legal",
  "driver": {
    "id": 6,
    "name": "KNOWLEDGE ASYMMETRY"
  },
  "breadcrumbs": [
    {
      "label": "Dashboard",
      "url": "https://anonym.community/../dashboard.html"
    },
    {
      "label": "Structural Analysis",
      "url": "https://anonym.community/../structural-analysis.html"
    },
    {
      "label": "anonym.legal",
      "url": "https://anonym.community/index.html"
    },
    {
      "label": "SD6 KNOWLEDGE ASYMMETRY",
      "url": "https://anonym.community/index.html#SD6"
    }
  ],
  "content": {
    "sections": [
      {
        "type": "summary",
        "heading": "Research Source",
        "content": "Lilian Edwards, Michael Veale · 2017 · Source: OpenAlex\n\nCite as Lilian Edwards and Michael Veale, 'Slave to the Algorithm? Why a 'right to an explanation' is probably not the remedy you are looking for' (2017) 16 Duke Law and Technology Review 18–84."
      },
      {
        "type": "summary",
        "heading": "Executive Summary",
        "content": "This research paper examines a critical privacy challenge related to KNOWLEDGE ASYMMETRY — the gap between what is known and what is practiced.\n\nanonym.legal addresses this through accessible pricing (Free €0 to Business €29) with Chrome Extension making anonymization as simple as browsing."
      },
      {
        "type": "problem",
        "heading": "Root Cause: SD6 — KNOWLEDGE ASYMMETRY",
        "content": "The gap between what is known and what is practiced. Solutions exist in papers that practitioners never read. Attacks are documented that defenders never learn about. Rights exist that individuals never exercise.\n\nIrreducible truth: Every other structural driver could theoretically be mitigated if knowledge were perfect and universally distributed. But knowledge is never perfect and never universal. This gap is the reason known solutions aren't applied, known attacks aren't defended against, and known rights aren't exercised.",
        "atomicTruth": "Irreducible truth: Every other structural driver could theoretically be mitigated if knowledge were perfect and universally distributed. But knowledge is never perfect and never universal. This gap is the reason known solutions aren't applied, known attacks aren't defended against, and known rights aren't exercised."
      },
      {
        "type": "solution",
        "heading": "The Solution: How anonym.legal Addresses This",
        "content": "anonym.legal identifies 260+ entity types including hashed emails, pseudonymized records, incorrectly anonymized fields. The 3-layer hybrid (Presidio + NLP + Stance classification) architecture uses Microsoft Presidio deterministic rules with checksum validations (Luhn, RFC-822) for structured identifiers and XLM-RoBERTa + Stanza NER with Stance classification for disambiguation for contextual references.\n\nHash is recommended for this pain point: proper SHA-256 hashing through a validated pipeline ensures consistent, auditable anonymization meeting GDPR requirements. Redact provides an alternative — when uncertain about correct anonymization, complete redaction provides a safe default eliminating misconception risk. For scenarios requiring reversibility, Encrypt (AES-256-GCM) enables authorized recovery of original values.\n\nThe MCP Server (7 tools, Pro/Business plans) enables PII detection in Claude Desktop and Cursor workflows with text analysis, anonymization, detokenization, and session management."
      },
      {
        "type": "compliance",
        "heading": "Compliance Mapping",
        "content": "This pain point intersects with GDPR Recital 26 identifiability test, Article 25 data protection by design.\n\nanonym.legal’s GDPR, HIPAA, PCI-DSS, ISO 27001 compliance coverage, combined with Hetzner Germany, ISO 27001 certified hosting, provides documented technical measures organizations can reference in their compliance documentation and regulatory submissions."
      },
      {
        "type": "specifications",
        "heading": "Product Specifications",
        "specs": {
          "Platform Version": "v7.4.4",
          "Entity Types": "260+",
          "Detection Layers": "3-layer: Presidio + NLP + Stance classification",
          "Accuracy": "95.5% tested (42/44 tests)",
          "Languages": "48",
          "Anonymization Methods": "Replace, Redact, Mask, Hash (SHA-256/512/MD5), Encrypt (AES-256-GCM)",
          "Platforms": "Web App, Desktop, Office Add-in, MCP Server, Chrome Extension, REST API",
          "Pricing": "Free €0, Basic €3, Pro €15, Business €29",
          "Hosting": "Hetzner Germany, ISO 27001",
          "Compliance": "GDPR, HIPAA, PCI-DSS, ISO 27001"
        }
      }
    ]
  },
  "relatedLinks": [
    {
      "label": "SD6-02: Internet of Things and Blockchain: Legal Issues and Privacy. The Challenge for a Privacy Standard",
      "url": "SD6-02-internet-of-things-and-blockchain-legal-issues-and-privacy-t.html"
    },
    {
      "label": "SD6-03: The Internet of Things ecosystem: The blockchain and privacy issues. The challenge for a global privacy standard",
      "url": "SD6-03-the-internet-of-things-ecosystem-the-blockchain-and-privacy.html"
    },
    {
      "label": "SD6-04: Data Protection Issues for Smart Contracts",
      "url": "SD6-04-data-protection-issues-for-smart-contracts.html"
    },
    {
      "label": "SD6-05: Article 39 Tasks of the data protection officer",
      "url": "SD6-05-article-39-tasks-of-the-data-protection-officer.html"
    },
    {
      "label": "SD6-06: Article 38 Position of the data protection officer",
      "url": "SD6-06-article-38-position-of-the-data-protection-officer.html"
    },
    {
      "label": "SD6-07: Balancing Security and Privacy: Web Bot Detection, Privacy Challenges, and Regulatory Compliance under the GDPR and AI Act.",
      "url": "SD6-07-balancing-security-and-privacy-web-bot-detection-privacy-cha.html"
    },
    {
      "label": "SD6-08: GDPR’s reflection in privacy-enhancing technologies : implications for AI data protection",
      "url": "SD6-08-gdprs-reflection-in-privacy-enhancing-technologies-implicati.html"
    },
    {
      "label": "SD6-09: Experiential case study audit of three popular period trackers using General Data Protection Regulation (GDPR) and intimate privacy assessment criteria.",
      "url": "SD6-09-experiential-case-study-audit-of-three-popular-period-tracke.html"
    },
    {
      "label": "SD6-10: AI Ethics: Algorithmic Determinism or Self-Determination? The GPDR Approach",
      "url": "SD6-10-ai-ethics-algorithmic-determinism-or-self-determination-the.html"
    },
    {
      "label": "anonymize.solutions",
      "url": "../anonymize.solutions/SD6-01-slave-to-the-algorithm-why-a-right-to-an-explanation-is-prob.html"
    },
    {
      "label": "Download SD6 KNOWLEDGE ASYMMETRY PDF (all 10 case studies)",
      "url": "#"
    },
    {
      "label": "Back to anonym.legal Index",
      "url": "index.html"
    },
    {
      "label": "Structural Analysis",
      "url": "../structural-analysis.html"
    },
    {
      "label": "Cross-Domain Analysis",
      "url": "../structural-analysis.html"
    },
    {
      "label": "Dashboard",
      "url": "../dashboard.html"
    }
  ],
  "metadata": {
    "lastModified": "2026-03-14"
  }
}