CNR Institutional Research Information System

In the European Union, the recent update to data protection laws by virtue of the General Data Protection Regulation (GDPR) significantly changed the landscape of the processing of personal data. Consequently, adequate solutions to ensure that the controller and processor properly understand and meet the data protection requirements are needed. In enterprise reality it is quite common to use Business Process (BP) models to manage the different business activities. Hence the idea of integrating privacy concepts into BP models so as to leverage them to the role of GDPR recommenders. To this end, suggestions and recommendations about data management pursuant to GDPR provisions have been added to specific tasks of the BP, to improve both the process management and personnel learning and training. Feasibility of the proposed idea, implemented into an Eclipse plugin, has been provided through a realistic example.

GDPR and business processes: an effective solution

Calabro' A.;Marchetti E.
2019

Abstract

In the European Union, the recent update to data protection laws by virtue of the General Data Protection Regulation (GDPR) significantly changed the landscape of the processing of personal data. Consequently, adequate solutions to ensure that the controller and processor properly understand and meet the data protection requirements are needed. In enterprise reality it is quite common to use Business Process (BP) models to manage the different business activities. Hence the idea of integrating privacy concepts into BP models so as to leverage them to the role of GDPR recommenders. To this end, suggestions and recommendations about data management pursuant to GDPR provisions have been added to specific tasks of the BP, to improve both the process management and personnel learning and training. Feasibility of the proposed idea, implemented into an Eclipse plugin, has been provided through a realistic example.
2019
Istituto di Scienza e Tecnologie dell'Informazione "Alessandro Faedo" - ISTI
Inglese
APPIS '19: Proceedings of the 2nd International Conference on Applications of Intelligent Systems
APPIS 2019 - 2nd International Conference on Applications of Intelligent Systems
5
9781450360852
https://dl.acm.org/doi/10.1145/3309772.3309779
Sì, ma tipo non specificato
7-12/01/2019
Las Palmas de Gran Canaria, Spain
BPMN
Business processes
General Data Protection Regulation (GDPR)
Learning
Privacy by Design
This work has been partially funded by the Luxembourg National Research Fund (FNR) CORE project C16/IS/11333956 "DAPRECO:DAta Protection REgulation COmpliance"
2-s2.0-85070543361
WOS:000519037800007
Elettronico
3
restricted
Bartolini, C.; Calabro', A.; Marchetti, E.
273
info:eu-repo/semantics/conferenceObject
04 Contributo in convegno::04.01 Contributo in Atti di convegno
04.01 Contributo in Atti di convegno
File in questo prodotto:
File Dimensione Formato  
prod_415732-doc_150376.pdf

solo utenti autorizzati

Descrizione: GDPR and business processes: an effective solution
Tipologia: Versione Editoriale (PDF)
Licenza: NON PUBBLICO - Accesso privato/ristretto
Dimensione 635.43 kB
Formato Adobe PDF
  Visualizza/Apri   Richiedi una copia
635.43 kB Adobe PDF   Visualizza/Apri   Richiedi una copia

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/20.500.14243/374746
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 6
  • ???jsp.display-item.citation.isi??? 7
social impact