A privacy-aware conceptual model for handling personal data
Paper in proceeding, 2016
Handling personal data adequately is one of the biggest challenges of our era. Consequently, law and regulations are in the process of being released, like the European General Data Protection Regulation (GDPR), which attempt to deal with these challenging issue early on. The core question motivating this work is how software developers can validate their technical design vis-a-vis the prescriptions of the privacy legislation. In this paper, we outline the technical concepts related to privacy that need to be taken into consideration in a software design. Second, we extend a popular design notation in order to support the privacy concepts illustrated in the previous point. Third, we show how some of the prescriptions of the privacy legislation and standards may be related to a technical design that employs our enriched notation, which would facilitate reasoning about compliance.
Conceptual model
Data flow diagrams
Privacy
Author
Thibaud Antignac
Chalmers, Computer Science and Engineering (Chalmers), Software Technology (Chalmers)
Riccardo Scandariato
University of Gothenburg
Gerardo Schneider
University of Gothenburg
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
03029743 (ISSN) 16113349 (eISSN)
Vol. 9952 LNCS 942-9579783319471655 (ISBN)
Subject Categories
Computer and Information Science
DOI
10.1007/978-3-319-47166-2_65