The University of Southampton
×
Filter your search:
University of Southampton Institutional Repository

Data protection by design tool for automated GDPR compliance verification based on semantically modeled informed consent

Data protection by design tool for automated GDPR compliance verification based on semantically modeled informed consent
Data protection by design tool for automated GDPR compliance verification based on semantically modeled informed consent
The enforcement of the GDPR in May 2018 has led to a paradigm shift in data protection. Organizations face significant challenges, such as demonstrating compliance (or auditability) and automated compliance verification due to the complex and dynamic nature of consent, as well as the scale at which compliance verification must be performed. Furthermore, the GDPR’s promotion of data protection by design and industrial interoperability requirements has created new technical challenges, as they require significant changes in the design and implementation of systems that handle personal data. We present a scalable data protection by design tool for automated compliance verification and auditability based on informed consent that is modeled with a knowledge graph. Automated compliance verification is made possible by implementing a regulation-to-code process that translates GDPR regulations into well-defined technical and organizational measures and, ultimately, software code. We demonstrate the effectiveness of the tool in the insurance and smart cities domains. We highlight ways in which our tool can be adapted to other domains.
1424-8220
Chhetri, Tek Raj
c3431de5-4860-43e5-b09f-3dbb752c8490
Kurteva, Anelia
1b024131-3c61-4876-893a-97f5d731b554
DeLong, Rance J.
d88b3603-fabf-41c8-8a7e-54cde2c996f9
Hilscher, Rainer
bc1d203c-30d1-46ba-bfe5-ba2c630f2f1b
Korte, Kai
ead633d5-96e0-440e-bf17-761770a162f4
Fensel, Anna
6d0be8a7-8261-48f1-9214-fc5fc59c40d3
Chhetri, Tek Raj
c3431de5-4860-43e5-b09f-3dbb752c8490
Kurteva, Anelia
1b024131-3c61-4876-893a-97f5d731b554
DeLong, Rance J.
d88b3603-fabf-41c8-8a7e-54cde2c996f9
Hilscher, Rainer
bc1d203c-30d1-46ba-bfe5-ba2c630f2f1b
Korte, Kai
ead633d5-96e0-440e-bf17-761770a162f4
Fensel, Anna
6d0be8a7-8261-48f1-9214-fc5fc59c40d3

Chhetri, Tek Raj, Kurteva, Anelia, DeLong, Rance J., Hilscher, Rainer, Korte, Kai and Fensel, Anna (2022) Data protection by design tool for automated GDPR compliance verification based on semantically modeled informed consent. Sensors, 22 (7), [2763]. (doi:10.3390/s22072763).

Record type: Article

Abstract

The enforcement of the GDPR in May 2018 has led to a paradigm shift in data protection. Organizations face significant challenges, such as demonstrating compliance (or auditability) and automated compliance verification due to the complex and dynamic nature of consent, as well as the scale at which compliance verification must be performed. Furthermore, the GDPR’s promotion of data protection by design and industrial interoperability requirements has created new technical challenges, as they require significant changes in the design and implementation of systems that handle personal data. We present a scalable data protection by design tool for automated compliance verification and auditability based on informed consent that is modeled with a knowledge graph. Automated compliance verification is made possible by implementing a regulation-to-code process that translates GDPR regulations into well-defined technical and organizational measures and, ultimately, software code. We demonstrate the effectiveness of the tool in the insurance and smart cities domains. We highlight ways in which our tool can be adapted to other domains.

Text
sensors-22-02763-v3 - Version of Record
Available under License Creative Commons Attribution.
Download (2MB)

More information

Accepted/In Press date: 1 April 2022
Published date: 3 April 2022
Learn more about Web and Internet Science research

Identifiers

Local EPrints ID: 481457
URI: http://eprints.soton.ac.uk/id/eprint/481457
DOI: doi:10.3390/s22072763
ISSN: 1424-8220
PURE UUID: d9b115a2-cd9f-497e-9a0b-8edb4e95f226
ORCID for Tek Raj Chhetri: ORCID iD orcid.org/0000-0002-3905-7878

Catalogue record

Date deposited: 29 Aug 2023 16:53
Last modified: 17 Mar 2024 04:21

Export record

Altmetrics

Contributors

Author: Tek Raj Chhetri ORCID iD
Author: Anelia Kurteva
Author: Rance J. DeLong
Author: Rainer Hilscher
Author: Kai Korte
Author: Anna Fensel

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Library staff additional information
Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×