The General Data Protection Regulation (GDPR), a European data protection law enacted in 2016, focuses on the protection of the data of individuals in the European Union (EU). Incorporating privacy by design (PbD) principles into Compliance assessment systems ensures that privacy is prioritized in the design and architecture of systems. This paper followed a systematic literature review that discussed privacy by design principles. It then formulates seven Privacy by design principles based on literature analysis. We then highlight a GDPR compliance assessment toolkit (GCAT) and compare the seven PbD principles to the GCAT to show that the GCAT was designed to incorporate privacy by default and privacy by design principles. The observations indicate how privacy by design principles are embedded into the development of the system to enhance trust among users.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Privacy by Design for GDPR Compliance Assessment

  • Nokuthaba Siphambili,
  • Ntomfuthi Ntshangase,
  • Sipho Ngobeni,
  • Daniel Shadung,
  • Rofhiwa Netshiya

摘要

The General Data Protection Regulation (GDPR), a European data protection law enacted in 2016, focuses on the protection of the data of individuals in the European Union (EU). Incorporating privacy by design (PbD) principles into Compliance assessment systems ensures that privacy is prioritized in the design and architecture of systems. This paper followed a systematic literature review that discussed privacy by design principles. It then formulates seven Privacy by design principles based on literature analysis. We then highlight a GDPR compliance assessment toolkit (GCAT) and compare the seven PbD principles to the GCAT to show that the GCAT was designed to incorporate privacy by default and privacy by design principles. The observations indicate how privacy by design principles are embedded into the development of the system to enhance trust among users.