A Pattern Catalog for GDPR Compliant Data Protection
نویسنده
چکیده
Today’s digital Business Models challenge the concept of privacy of the previous century. As a legislative approach to keep up with the rapid technological change, the European Union has passed the General Data Protection Regulation (GDPR), which will be effective in May 2018. For companies, this implies extensive changes in established processes and new organizational duties. With this work, we aim to develop an understanding and concepts that support an organization consisting of people, processes and IT systems in the implementation of privacy regulation. The central result will be patterns, i.e. observed successful approaches of how to address specific requirements of the GDPR.
منابع مشابه
Toward GDPR-Compliant Socio-Technical Systems: Modeling Language and Reasoning Framework
Privacy is a key aspect for the European Union (EU), where it is regulated by a specific law, the General Data Protection Regulation (GDPR). Compliance to the GDPR is a problem for organizations, it imposes strict constraints whenever they deal with personal data and, in case of infringement, it specifies severe consequences such as legal and monetary penalties. Such organizations frequently ar...
متن کاملDesigning a GDPR-compliant and Usable Privacy Dashboard
The role of personal data gained significance across all business domains in past decades. Despite strict legal restrictions that processing personal data is subject to, users tend to respond to the extensive collection of data by service providers with distrust. Legal battles between data subjects and processors emphasized the need of adaptations by the current law to face today’s challenges. ...
متن کاملSome HCI Priorities for GDPR-Compliant Machine Learning
The General Data Protection Regulation: An Opportunity for the CHI Community? (CHI-GDPR 2018), Workshop at ACM CHI’18, 22 April 2018, Montréal, Canada Abstract In this short paper, we consider the roles of HCI in enabling the better governance of consequential machine learning systems using the rights and obligations laid out in the recent 2016 EU General Data Protection Regulation (GDPR)—a law...
متن کاملTowards an Understanding of Stakeholders and Dependencies in the EU GDPR
Personal data has evolved into an essential element of current business models, which pose new challenges to legislation and organizations. To address these challenges at a European level, the European Commission has passed the General Data Protection Regulation (GDPR). Using a data-driven approach, we identify the key stakeholders that are described in the GDPR, which are the data subject, the...
متن کاملThe Effect of the General Data Protection Regulation on Medical Research
BACKGROUND The enactment of the General Data Protection Regulation (GDPR) will impact on European data science. Particular concerns relating to consent requirements that would severely restrict medical data research have been raised. OBJECTIVE Our objective is to explain the changes in data protection laws that apply to medical research and to discuss their potential impact. METHODS Analysi...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2017