Se ha denunciado esta presentación.
Utilizamos tu perfil de LinkedIn y tus datos de actividad para personalizar los anuncios y mostrarte publicidad más relevante. Puedes cambiar tus preferencias de publicidad en cualquier momento.
Scalable Policy-awarE
Linked Data arChitecture
for prIvacy, trAnsparency and
compLiance (SPECIAL)
Sabrina Kirrane, WU
29th...
Data subjects who would like to declare, monitor and optionally
revoke their (often not explicit) preferences on data shar...
Data$&$Data$
Driven$
Services
Regulators
Companies/
Service4
Providers
Customers/
Service4Users
Privacy4
Preferences
Legal...
SPECIAL Use Cases
SPECIAL Technical Foundations
Big Data and Privacy Foundations
SPECIAL	leverages	past	infrastructure	and	lessons	learned	
...
Collected	data	
How	is	data	
processed	 Where	are	
collected	data	and	
profiles	stored	
For	how	long	are	
the	data	stored	...
Usage policy language
Syntax and expressivity
•  Usage	policy	language,	which	can	be	used	to	express	
both	the	data	subjec...
Usage policy language
SPECIAL resources
•  Detailed	in	D2.5	Policy	Language	V2		
•  Available	for	download	via	the	SPECIAL...
Provenance/event information
Syntax and expressivity
•  Development	of	a	log	
vocabulary	that	reuses	well-
known	vocabular...
Provenance/event information
SPECIAL resources
•  Detailed	in	D2.7	Transparency	
Framework	V1		
•  Available	for	download	...
•  Modeling	regulatory	
obligations	using	an	
adaption	of	the	Open	Digital	
Rights	Language		
•  Automated	compliance	
che...
SPECIAL ODRL Regulatory Compliance Profile
SPECIAL resources
•  Preliminary	Analysis	Detailed	in	D2.6	Formal	
Representati...
Data Privacy, Vocabularies and Controls
Community Group (DPVCG)
•  24th	May	2018:	Presentation	of	this	initial	
charter	dr...
Exploitable Results
•  Resources	
v  The	SPECIAL	Usage	Policy	Language	
http://purl.org/specialprivacy/policylanguage	
v  ...
Próxima SlideShare
Cargando en…5
×

BDV Webinar Series - Sabrina - Scalable Policy- Aware Linked Data Architecture for Privacy, Transparency and Compliance

95 visualizaciones

Publicado el



Worried about data privacy in big data? Don’t be! In this webinar we are going to present the approach of the SPECIAL project to address the contradiction between Big Data innovation and privacy-aware data protection. We will present the SPECIAL platform that allows:

– The acquisition of user consent and associated data and metadata.
– Catering for privacy-aware, secure workflows.
– Support for privacy preserving innovation in Big Data environments.
– Viz via a dashboard to make privacy in Big Data comprehensible and manageable for data subjects, controllers and processors.

Publicado en: Datos y análisis
  • Inicia sesión para ver los comentarios

  • Sé el primero en recomendar esto

BDV Webinar Series - Sabrina - Scalable Policy- Aware Linked Data Architecture for Privacy, Transparency and Compliance

  1. 1. Scalable Policy-awarE Linked Data arChitecture for prIvacy, trAnsparency and compLiance (SPECIAL) Sabrina Kirrane, WU 29th of November 2019 Big Data Value ecosystem (BDVe) Webinar Series
  2. 2. Data subjects who would like to declare, monitor and optionally revoke their (often not explicit) preferences on data sharing Regulators who can leverage technical means to check compliance with the GDPR Companies whose business models rely on personal data and for which the GDPR is both a challenge and an opportunity 2013 2014 2015 2016 2017 2018 Draft of the regulation 7/22/2012 Revisions in the draft 3/12/2013 Discussions in the EU Council 5/19/2014 EU Council finalises the chapters 8/6/2015 Trilogue starts 6/24/2015 Trilogue agrees 12/17/2015 Comes into effect 5/25/2018 SPECIAL Aims & Stakeholders 2 2019 SPECIAL Kickoff Jan 2017 Where we are now
  3. 3. Data$&$Data$ Driven$ Services Regulators Companies/ Service4 Providers Customers/ Service4Users Privacy4 Preferences Legal Policies Contracts/ Terms4of4use SPECIAL Objectives 3
  4. 4. SPECIAL Use Cases
  5. 5. SPECIAL Technical Foundations Big Data and Privacy Foundations SPECIAL leverages past infrastructure and lessons learned v Big Data Europe scalability and elasticity v PrimeLife policy languages, access control policies, release policies and data handling policies v The Platform for Privacy Preferences Project (P3P) and the Open Digital Rights Language (ODRL) vocabularies 5
  6. 6. Collected data How is data processed Where are collected data and profiles stored For how long are the data stored Purpose of data collection and processing Disclosure to third parties SPECIAL Technical Foundations Consent, Transparency, and Compliance Checking Transparency Ledger
  7. 7. Usage policy language Syntax and expressivity •  Usage policy language, which can be used to express both the data subjects’ consent, data controllers usage requests, fragments of the GDPR, and business policies •  The foundation of the policy language was the Minimal Core Model (MCM) •  We propose a new policy language that extensively re-uses standards based privacy-related vocabularies •  We are able to leverage existing Web Ontology Language (OWL) based reasoners out of the box Big Data and Analytics in the Age of the GDPR, Piero A. Bonatti and Sabrina Kirrane, Proceedings of the IEEE World Congress on Services (IEEE SERVICES 2019)
  8. 8. Usage policy language SPECIAL resources •  Detailed in D2.5 Policy Language V2 •  Available for download via the SPECIAL website https://www.specialprivacy.eu/langs/usage- policy •  An unofficial draft specification has been published online http://purl.org/specialprivacy/policylanguage •  Feeds into the standardisation efforts conducted in the W3C Data Privacy Vocabularies and Controls Communty Group Big Data and Analytics in the Age of the GDPR, Piero A. Bonatti and Sabrina Kirrane, Proceedings of the IEEE World Congress on Services (IEEE SERVICES 2019)
  9. 9. Provenance/event information Syntax and expressivity •  Development of a log vocabulary that reuses well- known vocabularies such as PROV for representing provenance metadata •  Demonstrate how provenance can be used to support transparency in data value chains 9 A Scalable Consent, Transparency and Compliance Architecture, Sabrina Kirrane, Javier D. Fernández, Wouter Dullaert, Uros Milosevic, Axel Polleres, Piero Bonatti, Rigo Wenning, Olha Drozd and Philip Raschke, Proceedings of the Posters and Demos Track of the Extended Semantic Web Conference (ESWC 2018)
  10. 10. Provenance/event information SPECIAL resources •  Detailed in D2.7 Transparency Framework V1 •  Available for download via the SPECIAL website https://www.specialprivacy.eu/langs/ splog •  An unofficial draft specification has been published online https://www.specialprivacy.eu/ platform/ontologies-and-vocabularies A Scalable Consent, Transparency and Compliance Architecture, Sabrina Kirrane, Javier D. Fernández, Wouter Dullaert, Uros Milosevic, Axel Polleres, Piero Bonatti, Rigo Wenning, Olha Drozd and Philip Raschke , Proceedings of the Posters and Demos Track of the Extended Semantic Web Conference (ESWC 2018)
  11. 11. •  Modeling regulatory obligations using an adaption of the Open Digital Rights Language •  Automated compliance checking for business policies SPECIAL ODRL Regulatory Compliance Profile Syntax and expressivity https://www.w3.org/TR/odrl-model/ Derived from the W3C Open Digital Rights Language Specifications ODRL policy modelling and compliance checking, Marina De Vos, Sabrina Kirrane, Julian Padget and Ken Satoh, Proceedings of the 3rd International Joint Conference on Rules and Reasoning (RuleML+RR 2019)
  12. 12. SPECIAL ODRL Regulatory Compliance Profile SPECIAL resources •  Preliminary Analysis Detailed in D2.6 Formal Representation of the legislation V2 •  Available for download via the SPECIAL website: https://www.specialprivacy.eu/publications/ public-deliverables •  An unofficial draft specification has been published online https://www.specialprivacy.eu/platform/ ontologies-and-vocabularies ODRL policy modelling and compliance checking, Marina De Vos, Sabrina Kirrane, Julian Padget and Ken Satoh, Proceedings of the 3rd International Joint Conference on Rules and Reasoning (RuleML+RR 2019)
  13. 13. Data Privacy, Vocabularies and Controls Community Group (DPVCG) •  24th May 2018: Presentation of this initial charter draft to initial stakeholders •  25th May 2018: Launch of Community Group •  26th-30th May 2018 until 30 June 2018: feedback on the draft charter. •  29th-31st August 2018: 1st Face-2-face meeting co-located at MyData2018 in Helsinki, Finland. •  12th-14th November 2018: 2nd Face-2-face meeting co-located with the European Big Data Value Forum 2018 in Vienna, Austria. •  26th of July 2019: published a first public CG draft report on its "Data Privacy Vocabulary v0.1” https://www.w3.org/ns/dpv https://www.w3.org/community/dpvcg/ Creating a vocabulary for data privacy: the first-year report of data privacy vocabularies and controls community group (DPVCG), Pandit, H.J., Polleres, A., Bos, B., Brennan, R., Bruegger, B., Ekaputra, F.J., Hamed, R.G., Kiesling, E., Lizar, M., Schlehan, E. and Steyskal, S., 2019
  14. 14. Exploitable Results •  Resources v  The SPECIAL Usage Policy Language http://purl.org/specialprivacy/policylanguage v  The SPECIAL Vocabularies https://www.specialprivacy.eu/vocabs v  The SPECIAL Policy Log Vocabulary http://purl.org/specialprivacy/splog v  ODRL Regulatory Compliance Profile https://www.specialprivacy.eu/platform/ ontologies-and-vocabularies v  Data Privacy, Vocabularies and Controls Community Group (DPVCG) https://www.w3.org/ns/dpv •  SPECIAL Compliance Checking v  Demonstrates how usage policies together with event logs can be used to perform both ex-ante and ex-post compliance checking •  SPECIAL Consent and Transparency Interfaces v  Various consent user interfaces and the transparency dashboard v  Guidelines for legally compliant consent retrieval 14

×