Aidinlis. (2018). Are ‘pseudonymised’ data always personal data? Implications of the GDPR for administrative data research in the UK. Computer Law and Security Review, 222 - 233. https://doi.org/10.1016/j.clsr.2018.01.002