Recital 28
EU GDPR

(28) The application of pseudonymisation to personal data can reduce the risks to the data subjects concerned and help controllers and processors to meet their data-protection obligations.

The explicit introduction of ‘pseudonymisation’ in this Regulation is not intended to preclude any other measures of data protection.