Extending PriPoCoG: A Privacy Policy Editor for GDPR-Compliant Privacy Policies

Jens Leicht; Maritta Heisel

doi:10.5220/0012599600003687

Extending PriPoCoG: A Privacy Policy Editor for GDPR-Compliant Privacy Policies

Jens Leicht, Maritta Heisel

2024

Abstract

Privacy policies are an important tool for service providers around the world, especially after the enactment of the General Data Protection Regulation (GDPR). Such privacy policies are commonly expressed in long texts written in legalese. In many cases multiple departments of a company are involved in the definition of these policies; however, only the legal department is able to evaluate the level of GDPR-compliance. We propose and evaluate a privacy policy editor that can be operated by a broader audience. Our editor provides policy authors with guidance on what information to include in a policy. Using the Prolog Layered Privacy Language (P-LPL) our editor can also perform GDPR-compliance checks and warn policy authors when compliance issues arise during policy definition. The privacy policies created with our editor are well structured and computer-interpretable as we use an existing policy language (P-LPL). This may also be beneficial for the data subjects, who will be reading the privacy policies, as user interfaces can visualize the policies in structured and better comprehensible ways, compared to the pure legalese texts of today’s privacy policies. Data controllers and data processors may also use our editor for defining service level agreements.

Download

Paper Citation

in Harvard Style

Leicht J. and Heisel M. (2024). Extending PriPoCoG: A Privacy Policy Editor for GDPR-Compliant Privacy Policies. In Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE; ISBN 978-989-758-696-5, SciTePress, pages 307-318. DOI: 10.5220/0012599600003687

in Bibtex Style

@conference{enase24,
author={Jens Leicht and Maritta Heisel},
title={Extending PriPoCoG: A Privacy Policy Editor for GDPR-Compliant Privacy Policies},
booktitle={Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE},
year={2024},
pages={307-318},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012599600003687},
isbn={978-989-758-696-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE
TI - Extending PriPoCoG: A Privacy Policy Editor for GDPR-Compliant Privacy Policies
SN - 978-989-758-696-5
AU - Leicht J.
AU - Heisel M.
PY - 2024
SP - 307
EP - 318
DO - 10.5220/0012599600003687
PB - SciTePress