Skip to main content
Conference ProceedingsOPEN ACCESS

Tool-assisted risk analysis for data protection impact assessment

IFIP Advances in Information and Communication Technology (2020) 576 LNCS 308-324
DOI: 10.1007/978-3-030-42504-3_20
2Citations
Citations of this article
10Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Unlike the classical risk analysis that protects the assets of the company in question, the GDPR protects data subject’s rights and freedoms, that is, the right to data protection and the right to have full control and knowledge about data processing concerning them. The GDPR articulates Data Protection Impact Assessment (DPIA) in article 35. DPIA is a risk-based process to enhance and demonstrate compliance with these requirements. We propose a methodology to conduct the DPIA in three steps and provide a supporting tool. In this paper, we particularly elaborate on risk analysis as a step of this methodology. The provided tool assists controllers to facilitate data subject’s rights and freedoms. The assistance that our tool provides differentiates our work from the existing ones.

Author supplied keywords

Cite

CITATION STYLE

APA

Dashti, S., & Ranise, S. (2020). Tool-assisted risk analysis for data protection impact assessment. In IFIP Advances in Information and Communication Technology (Vol. 576 LNCS, pp. 308–324). Springer. https://doi.org/10.1007/978-3-030-42504-3_20

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free