Conference ProceedingsOPEN ACCESS

How to Improve the GDPR Compliance through Consent Management and Access Control

International Conference on Information Systems Security and Privacy (2021) 534-541
DOI: 10.5220/0010260205340541
2Citations
Citations of this article
13Readers
Mendeley users who have this article in their library.
Get full text

Abstract

This paper presents a privacy-by-design solution based on Consent Manager (CM) and Access Control (AC) to aid organizations to comply with the GDPR. The idea is to start from the GDPR’s text, transform it into a machine-readable format through a given CM, and then convert the obtained outcome to a set of enforceable Access Control Policies (ACPs). As a result, we have defined a layered architecture that makes any given system privacy-aware, i.e., systems that are compliant by-design with the GDPR. Furthermore, we have provided a proof-of-concept by integrating a Consent Manager coming from an industrial context and an AC Manager coming from academia.

Author supplied keywords

Cite

CITATION STYLE

APA

Daoudagh, S., Marchetti, E., Savarino, V., Di Bernardo, R., & Alessi, M. (2021). How to Improve the GDPR Compliance through Consent Management and Access Control. In International Conference on Information Systems Security and Privacy (pp. 534–541). Science and Technology Publications, Lda. https://doi.org/10.5220/0010260205340541

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free