Skip to main content
Journal ArticleOPEN ACCESS

Data Protection by Design Tool for Automated GDPR Compliance Verification Based on Semantically Modeled Informed Consent

Sensors (2022) 22(7)
DOI: 10.3390/s22072763
32Citations
Citations of this article
93Readers
Mendeley users who have this article in their library.

Abstract

The enforcement of the GDPR in May 2018 has led to a paradigm shift in data protection. Organizations face significant challenges, such as demonstrating compliance (or auditability) and automated compliance verification due to the complex and dynamic nature of consent, as well as the scale at which compliance verification must be performed. Furthermore, the GDPR’s promotion of data protection by design and industrial interoperability requirements has created new technical challenges, as they require significant changes in the design and implementation of systems that handle personal data. We present a scalable data protection by design tool for automated compliance verification and auditability based on informed consent that is modeled with a knowledge graph. Automated compliance verification is made possible by implementing a regulation-to-code process that translates GDPR regulations into well-defined technical and organizational measures and, ultimately, software code. We demonstrate the effectiveness of the tool in the insurance and smart cities domains. We highlight ways in which our tool can be adapted to other domains.

Author supplied keywords

References Powered by Scopus

Microservices: Yesterday, today, and tomorrow

Present and Ulterior Software Engineering
809Citations
N/AReaders
Get full text

The creation and analysis of a Website privacy policy corpus

54th Annual Meeting of the Association for Computational Linguistics, ACL 2016 - Long Papers
239Citations
N/AReaders
Get full text

GDPR-Compliant Personal Data Management: A Blockchain-Based Solution

IEEE Transactions on Information Forensics and Security
230Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Automated GDPR Contract Compliance Verification Using Knowledge Graphs

Information (Switzerland)
15Citations
N/AReaders
Get full text

PbDinEHR: A Novel Privacy by Design Developed Framework Using Distributed Data Storage and Sharing for Secure and Scalable Electronic Health Records Management

Journal of Sensor and Actuator Networks
13Citations
N/AReaders
Get full text

Understanding the Implementation of Technical Measures in the Process of Data Privacy Compliance: A Qualitative Study

International Symposium on Empirical Software Engineering and Measurement
12Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Chhetri, T. R., Kurteva, A., Delong, R. J., Hilscher, R., Korte, K., & Fensel, A. (2022). Data Protection by Design Tool for Automated GDPR Compliance Verification Based on Semantically Modeled Informed Consent. Sensors, 22(7). https://doi.org/10.3390/s22072763

Readers' Seniority

Tooltip

PhD / Post grad / Masters / Doc 18

72%

Lecturer / Post doc 4

16%

Researcher 3

12%

Readers' Discipline

Tooltip

Computer Science 17

63%

Engineering 4

15%

Social Sciences 3

11%

Business, Management and Accounting 3

11%

Save time finding and organizing research with Mendeley

Sign up for free