A privacy-aware conceptual model for handling personal data

Publikationstyp
Conference Paper
Date Issued
2016-10
Sprache
English
Author(s)
Antignac, Thibaud  
Scandariato, Riccardo  
Schneider, Gerardo  
TORE-URI
http://hdl.handle.net/11420/14426
First published in
Lecture notes in computer science  
Number in series
9952 LNCS
Start Page
942
End Page
957
Citation
Lecture Notes in Computer Science 9952 LNCS: 942-957 (2016)
Contribution to Conference
7th International Symposium on Leveraging Applications of Formal Methods, Verification and Validation, ISoLA 2016  
Publisher DOI
10.1007/978-3-319-47166-2_65
Scopus ID
2-s2.0-84994035492
Publisher
Springer
Handling personal data adequately is one of the biggest challenges of our era. Consequently, law and regulations are in the process of being released, like the European General Data Protection Regulation (GDPR), which attempt to deal with these challenging issue early on. The core question motivating this work is how software developers can validate their technical design vis-a-vis the prescriptions of the privacy legislation. In this paper, we outline the technical concepts related to privacy that need to be taken into consideration in a software design. Second, we extend a popular design notation in order to support the privacy concepts illustrated in the previous point. Third, we show how some of the prescriptions of the privacy legislation and standards may be related to a technical design that employs our enriched notation, which would facilitate reasoning about compliance.
Subjects
Conceptual model
Data flow diagrams
Privacy
DDC Class
004: Informatik