Accomplishing Transparency within the General Data Protection Regulation

Transparency is a user-centric principle proposed to empower users to hold data processors accountable for the usage and the processing of the user’s personal data. Accomplishing transparency may come with some resistance because it requires significant architectural changes, but it is mandatory by law under the recently approved General Data Protection Regulation. To help the transition, we systematically review what Transparency Enhancing Technologies can help to accomplish transparency in agreement with technical requirements that we elicited from the Regulation’s articles. We discuss our findings in the domain of medical data systems, where accomplishing transparency looks particularly controversial due to sensitivity of the personal medical data.

• Publication year

  2019

• Venue

  International Conference on Information Systems Security and Privacy

• Publication date

  2019-03-15

• Fields of study

  Law, Computer Science, Medicine

• Identifiers
  DOI 10.5220/0007366501140125
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Article 29

  2019cited by this paper
• Privacy Risk Analysis to Enable Informed Privacy Settings

  2018cited by this paper
• Designing a GDPR-Compliant and Usable Privacy Dashboard

  2017influential reference
• Computer-Aided Identification and Validation of Intervenability Requirements

  2017influential reference
• Semantic Similarity based Clustering of License Excerpts for Improved End-User Interpretation

  2017cited by this paper
• Identifying the Provision of Choices in Privacy Policy Text

  2017cited by this paper
• Modelling Metrics for Transparency in Medical Systems

  2017cited by this paper
• Private Verification of Access on Medical Data: An Initial Study

  2017cited by this paper
• Transparent Medical Data Systems

  2016influential reference
• Transparency, Privacy and Trust - Technology for Tracking and Controlling My Data Disclosures: Does This Work?

  2016cited by this paper
• PrivacyInsight: The Next Generation Privacy Dashboard

  2016influential reference
• A Framework to Reason about the Legal Compliance of Security Standards

  2016cited by this paper
• A Categorization of Transparency-Enhancing Technologies

  2015cited by this paper
• Can Transparency Enhancing Tools Support Patient's Accessing Electronic Health Records?

  2015cited by this paper
• Privacy transparency patterns

  2015influential reference
• Enabling privacy through transparency

  2014cited by this paper
• Privacy in Social Collective Intelligence Systems

  2014cited by this paper
• openPDS: Protecting the Privacy of Metadata through SafeAnswers

  2014cited by this paper
• How can Cloud Users be Supported in Deciding on, Tracking and Controlling How their Data are Used?

  2013cited by this paper
• Crime and Punishment in the Cloud Accountability, Transparency, and Privacy

  2013cited by this paper
• Privacy and Informed Consent in Online Interactions: Evidence from Expert Focus Groups

  2010cited by this paper
• 2009 Data Breach Investigations Report

  2009cited by this paper
• Information accountability

  2008influential reference
• Personalization in privacy-aware highly dynamic systems

  2006cited by this paper
• The Oxford handbook of computational linguistics

  2003cited by this paper

• Data Processing on Crowdsourcing Platforms: A Comparison between Germany and the United States

  2024cites this paper
• Textual Analysis of Privacy Policies to Understand the Effect of GDPR

  2023cites this paper
• Privacy Dashboards for Citizens and corresponding GDPR Services for Small Data Holders: A Literature Review

  2023cites this paper
• Needle in the Haystack: Analyzing the Right of Access According to GDPR Article 15 Five Years after the Implementation

  2023cites this paper
• Translating Privacy Design Principles Into Human-Centered Software Lifecycle: A Literature Review

  2023cites this paper
• SoK: Log Based Transparency Enhancing Technologies

  2023cites this paper
• Procedural Challenges of Cross-border Cooperation and Consistency in Personal Data Protection in the EU

  2023cites this paper
• The IoT and the new EU cybersecurity regulatory landscape

  2022cites this paper
• "For an App Supposed to Make Its Users Feel Better, It Sure is a Joke" - An Analysis of User Reviews of Mobile Mental Health Applications

  2022cites this paper
• Finding, getting and understanding: the user journey for the GDPR’S right to access

  2022cites this paper
• Human-GDPR Interaction: Practical Experiences of Accessing Personal Data

  2022cites this paper
• TIRA: An OpenAPI Extension and Toolbox for GDPR Transparency in RESTful Architectures

  2021cites this paper
• Transparency by design in data-informed research: A collection of information design patterns

  2020cites this paper
• Collecting, exploring and sharing personal data: Why, how and where

  2020cites this paper
• Privacy Technologies and Policy: 8th Annual Privacy Forum, APF 2020, Lisbon, Portugal, October 22–23, 2020, Proceedings

  2020influential citation
• Signs for Ethical AI: A Route Towards Transparency

  2020cites this paper
• User-friendly formulation of data processing purposes of voice assistants: a user perspective on the principle of purpose limitation

  2020influential citation
• Preliminary Remarks and Practical Insights on How the Whistleblower Protection Directive Adopts the GDPR Principles

  2020cites this paper
• Information Systems Security and Privacy: 5th International Conference, ICISSP 2019, Prague, Czech Republic, February 23-25, 2019, Revised Selected Papers

  2020influential citation
• GDPR Reality Check - Claiming and Investigating Personally Identifiable Data from Companies

  2020cites this paper
• GDPR-Reality Check on the Right to Access Data: Claiming and Investigating Personally Identifiable Data from Companies

  2019cites this paper
• Transparency Enhancing Tools and the GDPR: Do They Match?

  2019cites this paper
• Defining, Measuring, and Enabling Transparency for Electronic Medical Systems

  2018influential citation