A privacy-aware conceptual model for handling personal data
Paper in proceedings, 2016

Handling personal data adequately is one of the biggest challenges of our era. Consequently, law and regulations are in the process of being released, like the European General Data Protection Regulation (GDPR), which attempt to deal with these challenging issue early on. The core question motivating this work is how software developers can validate their technical design vis-a-vis the prescriptions of the privacy legislation. In this paper, we outline the technical concepts related to privacy that need to be taken into consideration in a software design. Second, we extend a popular design notation in order to support the privacy concepts illustrated in the previous point. Third, we show how some of the prescriptions of the privacy legislation and standards may be related to a technical design that employs our enriched notation, which would facilitate reasoning about compliance.

Privacy

Conceptual model

Data flow diagrams

Author

Thibaud Antignac

Chalmers, Computer Science and Engineering (Chalmers), Software Technology (Chalmers)

Riccardo Scandariato

Chalmers, Computer Science and Engineering (Chalmers), Software Engineering (Chalmers)

Gerardo Schneider

University of Gothenburg

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

03029743 (ISSN) 16113349 (eISSN)

Vol. 9952 LNCS 942-957

Subject Categories

Computer and Information Science

DOI

10.1007/978-3-319-47166-2_65

ISBN

9783319471655

More information

Created

10/8/2017