Privacytracker: A privacy-by-design GDPR-compliant framework with verifiable data traceability controls

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Citations (Scopus)

Abstract

Breach or lack of online privacy has become almost a commonplace of today’s digital age, mainly due to the inability of either enforcing privacy requirements or imposing strict sanctions against violations. The current state of affairs in data privacy is at a turning point for companies operating in EU state members as the enforcement of the General Data Protection Regulation (GDPR) empowers users with control over their personal data, including regulating its disclosure, withdrawing disclosure consent at any given time and tracking their data trail. Compliance with the GDPR is mandatory and it requires signifiant amendments and/or restructuring of data processing routines undertaken by enterprises. Currently, there is no framework to support the GDPR principles. This paper proposes privacyTracker, a GDPR-compliant framework that supports basic GDPR principles including data traceability and allowing a user to get a cryptographically verifiable snapshot of his/her data trail.

Original languageEnglish
Title of host publicationCurrent Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers
PublisherSpringer Verlag
Pages3-15
Number of pages13
Volume9881 LNCS
ISBN (Print)9783319469621
DOIs
Publication statusPublished - 2016
EventInternational Conference on Web Engineering, ICWE 2016 and 2nd International Workshop on TEchnical and LEgal aspects of data pRIvacy and SEcurity, TELERISE 2016, 2nd International Workshop on Mining the Social Web, SoWeMine 2016, 1st International Workshop on Liquid Multi-Device Software for the Web, LiquidWS 2016, 5th Workshop on Distributed User Interfaces: Distributing Interactions, DUI 2016 - Lugano, Switzerland
Duration: 6 Jun 20169 Jun 2016

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume9881 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

OtherInternational Conference on Web Engineering, ICWE 2016 and 2nd International Workshop on TEchnical and LEgal aspects of data pRIvacy and SEcurity, TELERISE 2016, 2nd International Workshop on Mining the Social Web, SoWeMine 2016, 1st International Workshop on Liquid Multi-Device Software for the Web, LiquidWS 2016, 5th Workshop on Distributed User Interfaces: Distributing Interactions, DUI 2016
CountrySwitzerland
CityLugano
Period6/06/169/06/16

Fingerprint

Data privacy
Traceability
Privacy
Disclosure
Design
Framework
Industry
Turning Point
Snapshot
Compliance

Keywords

  • Data traceability
  • General Data Protection Regulation (GDPR)
  • User privacy

Cite this

Gjermundrød, H., Dionysiou, I., & Costa, K. (2016). Privacytracker: A privacy-by-design GDPR-compliant framework with verifiable data traceability controls. In Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers (Vol. 9881 LNCS, pp. 3-15). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9881 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-46963-8_1
Gjermundrød, Harald ; Dionysiou, Ioanna ; Costa, Kyriakos. / Privacytracker : A privacy-by-design GDPR-compliant framework with verifiable data traceability controls. Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers. Vol. 9881 LNCS Springer Verlag, 2016. pp. 3-15 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{c49ca65303604618b4b3ea77230a4a97,
title = "Privacytracker: A privacy-by-design GDPR-compliant framework with verifiable data traceability controls",
abstract = "Breach or lack of online privacy has become almost a commonplace of today’s digital age, mainly due to the inability of either enforcing privacy requirements or imposing strict sanctions against violations. The current state of affairs in data privacy is at a turning point for companies operating in EU state members as the enforcement of the General Data Protection Regulation (GDPR) empowers users with control over their personal data, including regulating its disclosure, withdrawing disclosure consent at any given time and tracking their data trail. Compliance with the GDPR is mandatory and it requires signifiant amendments and/or restructuring of data processing routines undertaken by enterprises. Currently, there is no framework to support the GDPR principles. This paper proposes privacyTracker, a GDPR-compliant framework that supports basic GDPR principles including data traceability and allowing a user to get a cryptographically verifiable snapshot of his/her data trail.",
keywords = "Data traceability, General Data Protection Regulation (GDPR), User privacy",
author = "Harald Gjermundr{\o}d and Ioanna Dionysiou and Kyriakos Costa",
year = "2016",
doi = "10.1007/978-3-319-46963-8_1",
language = "English",
isbn = "9783319469621",
volume = "9881 LNCS",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "3--15",
booktitle = "Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers",

}

Gjermundrød, H, Dionysiou, I & Costa, K 2016, Privacytracker: A privacy-by-design GDPR-compliant framework with verifiable data traceability controls. in Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers. vol. 9881 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 9881 LNCS, Springer Verlag, pp. 3-15, International Conference on Web Engineering, ICWE 2016 and 2nd International Workshop on TEchnical and LEgal aspects of data pRIvacy and SEcurity, TELERISE 2016, 2nd International Workshop on Mining the Social Web, SoWeMine 2016, 1st International Workshop on Liquid Multi-Device Software for the Web, LiquidWS 2016, 5th Workshop on Distributed User Interfaces: Distributing Interactions, DUI 2016, Lugano, Switzerland, 6/06/16. https://doi.org/10.1007/978-3-319-46963-8_1

Privacytracker : A privacy-by-design GDPR-compliant framework with verifiable data traceability controls. / Gjermundrød, Harald; Dionysiou, Ioanna; Costa, Kyriakos.

Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers. Vol. 9881 LNCS Springer Verlag, 2016. p. 3-15 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9881 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Privacytracker

T2 - A privacy-by-design GDPR-compliant framework with verifiable data traceability controls

AU - Gjermundrød, Harald

AU - Dionysiou, Ioanna

AU - Costa, Kyriakos

PY - 2016

Y1 - 2016

N2 - Breach or lack of online privacy has become almost a commonplace of today’s digital age, mainly due to the inability of either enforcing privacy requirements or imposing strict sanctions against violations. The current state of affairs in data privacy is at a turning point for companies operating in EU state members as the enforcement of the General Data Protection Regulation (GDPR) empowers users with control over their personal data, including regulating its disclosure, withdrawing disclosure consent at any given time and tracking their data trail. Compliance with the GDPR is mandatory and it requires signifiant amendments and/or restructuring of data processing routines undertaken by enterprises. Currently, there is no framework to support the GDPR principles. This paper proposes privacyTracker, a GDPR-compliant framework that supports basic GDPR principles including data traceability and allowing a user to get a cryptographically verifiable snapshot of his/her data trail.

AB - Breach or lack of online privacy has become almost a commonplace of today’s digital age, mainly due to the inability of either enforcing privacy requirements or imposing strict sanctions against violations. The current state of affairs in data privacy is at a turning point for companies operating in EU state members as the enforcement of the General Data Protection Regulation (GDPR) empowers users with control over their personal data, including regulating its disclosure, withdrawing disclosure consent at any given time and tracking their data trail. Compliance with the GDPR is mandatory and it requires signifiant amendments and/or restructuring of data processing routines undertaken by enterprises. Currently, there is no framework to support the GDPR principles. This paper proposes privacyTracker, a GDPR-compliant framework that supports basic GDPR principles including data traceability and allowing a user to get a cryptographically verifiable snapshot of his/her data trail.

KW - Data traceability

KW - General Data Protection Regulation (GDPR)

KW - User privacy

UR - http://www.scopus.com/inward/record.url?scp=84992727076&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-46963-8_1

DO - 10.1007/978-3-319-46963-8_1

M3 - Conference contribution

AN - SCOPUS:84992727076

SN - 9783319469621

VL - 9881 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 3

EP - 15

BT - Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers

PB - Springer Verlag

ER -

Gjermundrød H, Dionysiou I, Costa K. Privacytracker: A privacy-by-design GDPR-compliant framework with verifiable data traceability controls. In Current Trends in Web Engineering - ICWE 2016 International Workshops DUI, TELERISE, SoWeMine, and Liquid Web, Revised Selected Papers. Vol. 9881 LNCS. Springer Verlag. 2016. p. 3-15. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-319-46963-8_1