InterviewStack.io LogoInterviewStack.io

Privacy-Enhancing Technologies and Anonymization Questions

Technical safeguards that reduce identifiability: anonymization, pseudonymization, tokenization, differential privacy, and related privacy-enhancing technologies. Covers the difference between anonymized and pseudonymized data, re-identification risk, and when each technique is appropriate. Includes evaluating the privacy-utility tradeoff of a given technical control.

HardTechnical
39 practiced
Prototype a privacy-preserving k-nearest-neighbors (kNN) search where the client holds a query vector and the server holds a dataset of indexed vectors. Using additive secret sharing as your primitive, implement a simulated server-side protocol that computes Euclidean distances without the server learning the client's query and without revealing dataset vectors to the client beyond the returned k nearest items. Provide code for share generation, pairwise distance computation using shares, and result reconstruction. Discuss communication and computation costs.
MediumSystem Design
35 practiced
Design a monitoring and governance system to track privacy-budget (ε, δ) consumption across multiple ML services and teams in production. Include APIs or SDK calls for services to log privacy-consuming operations, a central privacy ledger, dashboards, alert rules for budget exhaustion, enforcement mechanisms (rate-limiting or automatic throttling), and audit trails for compliance. Discuss trust boundaries and how to prevent teams from bypassing the ledger.
MediumTechnical
43 practiced
You need to train a DP model on a dataset with rare but high-value classes. DP's clipping and noise can disproportionately hurt rare classes. Propose practical strategies (e.g., importance weighting, per-class clipping, class-aware augmentation, synthetic examples, separate privacy budgets) to preserve utility for rare classes while maintaining DP guarantees. Discuss privacy implications of each approach and how you'd evaluate fairness and utility trade-offs.
MediumSystem Design
36 practiced
Design a federated learning pipeline for 100 hospitals where raw data never leaves hospital boundaries. Requirements: (1) use secure aggregation so the central server cannot see individual updates, (2) apply differential privacy so the aggregated model has a provable privacy budget, (3) handle connection unreliability and stragglers. Describe communication protocol, cryptographic primitives, orchestration, failure handling, and how you'll compute and monitor the overall privacy budget across rounds.
HardTechnical
32 practiced
A critical vulnerability is discovered in a third-party MPC library used in production. As the responsible ML engineer, outline an operational plan: immediate mitigations (patch, rollback, isolate affected services), steps for secure forensic analysis (collect logs, preserve evidence), communicating with legal/compliance and customers, assessing data exposure, and long-term actions (dependency policies, vendor risk controls, alternative libraries).

Unlock Full Question Bank

Get access to hundreds of Privacy-Enhancing Technologies and Anonymization interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.