Abstract
The General Data Protection Regulation (GDPR) requires transparency about the use of personal data. However, what does the transparency mean for an individual? This transparency is an ability of an individual to uniformly fulfill actions stated in the GDPR from checking his/her data usage to erasing data. An individual assumes that these actions are supported by services. Such a uniform aspect ``Privacy as a Service'' is proposed in this paper. The contribution of this work is a conceptual model of the GDPR for designing privacy services. This model has been built by a content coding of key Articles from the GDPR, followed by incremental conceptual modelling and, finally, adopting the business-generic pattern of a contract. With executable protocol models of two privacy services identified from the GDPR we illustrate how to use our conceptual model. This work contributes to a uniform understanding of privacy by design as ``Privacy as a Service''. We discuss the semantic and organizational value of the proposed model.
Original language | English |
---|---|
Title of host publication | International Symposium on Business Modeling and Software Design |
Subtitle of host publication | BMSD 2021: Business Modeling and Software Design |
Editors | Boris Shishkov |
Place of Publication | Cham |
Publisher | Springer |
Pages | 170-189 |
Number of pages | 20 |
Volume | 422 |
ISBN (Electronic) | 978-3-030-79976-2 |
ISBN (Print) | 978-3-030-79975-5 |
DOIs | |
Publication status | Published - Jul 2021 |
Event | 11th International Symposium on Business Modeling and Software Design - Sofia, Bulgaria Duration: 5 Jul 2021 → 7 Jul 2021 Conference number: 11 http://www.is-bmsd.org/ |
Publication series
Series | Lecture Notes in Business Information Processing |
---|---|
Volume | 422 |
ISSN | 1865-1348 |
Conference
Conference | 11th International Symposium on Business Modeling and Software Design |
---|---|
Abbreviated title | BMSD 2021 |
Country/Territory | Bulgaria |
City | Sofia |
Period | 5/07/21 → 7/07/21 |
Internet address |
Keywords
- Business Process Modelling
- Privacy Aspect
- Privacy as a Service (PraaS)
- Conceptual Model
- Executable Protocol Model
- General Data Protection Regulation
- General Data Protection Regulation (GDPR)
- Business process modelling
- Executable protocol model
- Conceptual model
- Privacy aspect