Recent research has highlighted multiple incompatibilities between blockchain technology and the General Data Protection Regulation (GDPR) regarding data controller and data deletion. Such incompatibilities impede the adoption of blockchain technology on a larger scale. This paper aims to resolve these incompatibilities, exploring the issues that need to be considered while developing a GDPR compliant blockchain governance framework. We collected data using 20 semi-structured interviews and discussions from 18 different IT companies involved in blockchain-based service development. We analyzed the data using the Gioia approach. We identified three major governance dimensions that must be considered for GDPR compliant blockchain services, namely community, blockchain protocol, and compliance; each of which has several sub-dimensions. Our study extends prior governance frameworks, suggesting the guidelines to comply with GDPR requirements. This guidelines might help organizations to build a GDPR compliant blockchain business model. Based on our findings, we also put forward directions for future inquiry.
CITATION STYLE
Mahmud, H., Islam, A. K. M. N., Naqvi, B., & Mäntymäki, M. (2022). Toward a GDPR Compliant Blockchain Governance Framework. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 13454 LNCS, pp. 471–484). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-15342-6_36
Mendeley helps you to discover research relevant for your work.