DEFeND Architecture: A Privacy by Design Platform for GDPR Compliance
Ghazi Al-Obeidalla, Mohammed;
Gallego-Nicasio Crespo, Beatriz;
Baptiste Bernard, Jean;
Castillo Sanz, Andrés G (1);
Giovanni Zorzino, Giuseppe
Tipo de Ítem:conferenceObject
The advent of the European General Data Protection Regulation (GDPR) imposes organizations to cope with radical changes concerning user data protection paradigms. GDPR, by promoting a Privacy by Design approach, obliges organizations to drastically change their methods regarding user data acquisition, management, processing, as well as data breaches monitoring, notification and preparation of prevention plans. This enforces data subjects (e.g., citizens, customers) rights by enabling them to have more information regarding usage of their data, and to take decisions (e.g., revoking usage permissions). Moreover, organizations are required to trace precisely their activities on user data, enabling authorities to monitor and sanction more easily. Indeed, since GDPR has been introduced, authorities have heavily sanctioned companies found as not GDPR compliant. GDPR is difficult to apply also for its length, complexity, covering many aspects, and not providing details concerning technical and organizational security measures to apply. This calls for tools and methods able to support organizations in achieving GDPR compliance. From the industry and the literature, there are many tools and prototypes fulfilling specific/isolated GDPR aspects, however there is not a comprehensive platform able to support organizations in being compliant regarding all GDPR requirements. In this paper, we propose the design of an architecture for such a platform, able to reuse and integrate peculiarities of those heterogeneous tools, and to support organizations in achieving GDPR compliance. We describe the architecture, designed within the DEFeND EU project, and discuss challenges and preliminary benefits in applying it to the healthcare and energy domains.
Ponencia de la conferencia "16th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2019; Linz; Austria; 26 August 2019 through 29 August 2019".
Este ítem aparece en la(s) siguiente(s) colección(es)
Estadísticas de uso
Mostrando ítems relacionados por Título, autor o materia.
Privacy data management and awareness for public administrations: A case study from the healthcare domain Diamantopoulou, Vasiliki; Angelopoulos, Konstantinos; Flake, Julian; Praitano, Andrea; Ruíz, José Fran; Jürjens, Jan; Pavlidis, Michalis; Bonutto, Dimitri; Castillo Sanz, Andrés G (1); Mouratidis, Haralambos; Robles, Javier García; Tozzi, Alberto Eugenio (Lecture Notes in Computer Science, 06/2017)Development of Information Systems that ensure privacy is a challenging task that spans various fields such as technology, law and policy. Reports of recent privacy infringements indicate that we are far from not only ...
Lorenzo Romero, Wenceslao; González-Crespo, Rubén; Castillo Sanz, Andrés G (International Journal of Interactive Multimedia and Artificial Intelligence (IJIMAI), 12/2010)A computer application designed to generalize linear elements in a vector formatted cartographic set by means of two of the most contrasted line generalization algorithms, Douglas-Peucker simplification and Bézier curves ...
Broncano Mateos, Carlos Javier; Pinilla Ruiz, Carlos; González-Crespo, Rubén; Castillo Sanz, Andrés G (International Journal of Interactive Multimedia and Artificial Intelligence (IJIMAI), 12/2010)A correct radiometric normalization between both images is fundamental for change detection. MAD method and its IR-MAD extension in an implementation on multisprectral aerial images is described in this paper.