Skip to Main content Skip to Navigation
Conference papers

Toward GDPR-Compliant Socio-Technical Systems: Modeling Language and Reasoning Framework

Abstract : Privacy is a key aspect for the European Union (EU), where it is regulated by a specific law, the General Data Protection Regulation (GDPR). Compliance to the GDPR is a problem for organizations, it imposes strict constraints whenever they deal with personal data and, in case of infringement, it specifies severe consequences such as legal and monetary penalties. Such organizations frequently are complex systems, where personal data is processed by humans and technical services. Therefore, it becomes fundamental to consider privacy from the social perspective when designing such system, i.e., when relations between different components are specified. This is, indeed, also specified in the GDPR, which encourages to apply privacy-by-design principles. This paper proposes a method to support the design of GDPR compliant systems, based on a socio-technical approach composed of a modeling language and a reasoning framework.
Complete list of metadata

Cited literature [11 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, April 12, 2018 - 4:33:46 PM
Last modification on : Friday, April 13, 2018 - 1:37:01 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Marco Robol, Mattia Salnitri, Paolo Giorgini. Toward GDPR-Compliant Socio-Technical Systems: Modeling Language and Reasoning Framework. 10th IFIP Working Conference on The Practice of Enterprise Modeling (PoEM), Nov 2017, Leuven, Belgium. pp.236-250, ⟨10.1007/978-3-319-70241-4_16⟩. ⟨hal-01765249⟩



Record views


Files downloads