Management of Customized Privacy Policies
Jens Leicht, Maritta Heisel
2025
Abstract
While privacy policies are well established to express data processing practices, customizable privacy policies are a researched but not established practice to empower data subjects. One of the hurdles, hindering the acceptance of customizable policies, is the management of large amounts of privacy policies, when each data subject has their own policy. We propose a Privacy Policy Management (PPM) system, which handles customized policies and distributes them to all data processors. In addition, our PPM keeps track of where and why data are being transferred. This information can be provided to the data subjects, so that they can see that the data controller complies to the policy agreed upon. The log of data transfers can also be used by data protection authorities, to check the GDPR-compliance of the data controller or for investigations in case of a data breach. We discuss the architecture of our PPM, how it operates, and integrate it into the Privacy Policy Compliance Guidance framework.
DownloadPaper Citation
in Harvard Style
Leicht J. and Heisel M. (2025). Management of Customized Privacy Policies. In Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP; ISBN 978-989-758-735-1, SciTePress, pages 385-396. DOI: 10.5220/0013365300003899
in Bibtex Style
@conference{icissp25,
author={Jens Leicht and Maritta Heisel},
title={Management of Customized Privacy Policies},
booktitle={Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP},
year={2025},
pages={385-396},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013365300003899},
isbn={978-989-758-735-1},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 2: ICISSP
TI - Management of Customized Privacy Policies
SN - 978-989-758-735-1
AU - Leicht J.
AU - Heisel M.
PY - 2025
SP - 385
EP - 396
DO - 10.5220/0013365300003899
PB - SciTePress