A privacy-aware conceptual model for handling personal data
Paper i proceeding, 2016

Handling personal data adequately is one of the biggest challenges of our era. Consequently, law and regulations are in the process of being released, like the European General Data Protection Regulation (GDPR), which attempt to deal with these challenging issue early on. The core question motivating this work is how software developers can validate their technical design vis-a-vis the prescriptions of the privacy legislation. In this paper, we outline the technical concepts related to privacy that need to be taken into consideration in a software design. Second, we extend a popular design notation in order to support the privacy concepts illustrated in the previous point. Third, we show how some of the prescriptions of the privacy legislation and standards may be related to a technical design that employs our enriched notation, which would facilitate reasoning about compliance.

Conceptual model

Data flow diagrams



Thibaud Antignac

Chalmers, Data- och informationsteknik, Programvaruteknik

Riccardo Scandariato

Göteborgs universitet

Gerardo Schneider

Göteborgs universitet

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

03029743 (ISSN) 16113349 (eISSN)

Vol. 9952 LNCS 942-957
9783319471655 (ISBN)


Data- och informationsvetenskap



Mer information

Senast uppdaterat