Accomplishing Transparency within the General Data Protection Regulation
Dayana Spagnuelo, Ana Ferreira, Gabriele Lenzini
2019
Abstract
Transparency is a user-centric principle proposed to empower users to hold data processors accountable for the usage and the processing of the user’s personal data. Accomplishing transparency may come with some resistance because it requires significant architectural changes, but it is mandatory by law under the recently approved General Data Protection Regulation. To help the transition, we systematically review what Transparency Enhancing Technologies can help to accomplish transparency in agreement with technical requirements that we elicited from the Regulation’s articles. We discuss our findings in the domain of medical data systems, where accomplishing transparency looks particularly controversial due to sensitivity of the personal medical data.
DownloadPaper Citation
in Harvard Style
Spagnuelo D., Ferreira A. and Lenzini G. (2019). Accomplishing Transparency within the General Data Protection Regulation.In Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-359-9, pages 114-125. DOI: 10.5220/0007366501140125
in Bibtex Style
@conference{icissp19,
author={Dayana Spagnuelo and Ana Ferreira and Gabriele Lenzini},
title={Accomplishing Transparency within the General Data Protection Regulation},
booktitle={Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2019},
pages={114-125},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007366501140125},
isbn={978-989-758-359-9},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Accomplishing Transparency within the General Data Protection Regulation
SN - 978-989-758-359-9
AU - Spagnuelo D.
AU - Ferreira A.
AU - Lenzini G.
PY - 2019
SP - 114
EP - 125
DO - 10.5220/0007366501140125