DaPIS: an Ontology-based Data Protection Icon Set

Similar documents
IAB Europe Guidance THE DEFINITION OF PERSONAL DATA. IAB Europe GDPR Implementation Working Group WHITE PAPER

EXIN Privacy and Data Protection Foundation. Preparation Guide. Edition

GDPR Awareness. Kevin Styles. Certified Information Privacy Professional - Europe Member of International Association of Privacy professionals

First Components Ltd, Savigny Oddie Ltd, & Datum Engineering Ltd. is pleased to provide the following

A Pattern Catalog for GDPR Compliant Data Protection

The IEEE Global Initiative on Ethics of Autonomous and Intelligent Systems. FairWare2018, 29 May 2018

GDPR & Teknologiske Trends

The General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation

HL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR)

Public consultation on Europeana

Dr Nicholas J. Gervassis University of Plymouth THE EMERGING UK DATA PROTECTION FRAMEWORK AND BEYOND

The IEEE Global Initiative for Ethical Considerations in Artificial Intelligence and Autonomous Systems. Overview June, 2017

Integrating Fundamental Values into Information Flows in Sustainability Decision-Making

Data Protection and Privacy in a M2M world. Yiannis Theodorou, Regulatory Policy Manager GSMA Latam Plenary Peru, November 2013

Privacy Management in Smart Cities

The new GDPR legislative changes & solutions for online marketing

ARTICLE 29 Data Protection Working Party

Our position. ICDPPC declaration on ethics and data protection in artificial intelligence

Polish Science Database (BWNP)

Article The Transparency Challenge: Making children aware of their data protection rights and the risks online

EU-GDPR The General Data Protection Regulation

Big Data and Personal Data Protection Challenges and Opportunities

Wireless Sensor Networks and Privacy

Biometric Data, Deidentification. E. Kindt Cost1206 Training school 2017

PROTECTION GOALS FOR PRIVACY ENGINEERING

Standards and privacy engineering ISO, OASIS, PRIPARE and Other Important Developments

CARAPELLI FOR ART COMPETITION RULES AND REGULATIONS

Towards Code of Conduct on Processing of Personal Data for Purposes of Scientific Research in the Area of Health

ICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate?

The Information Commissioner s response to the Draft AI Ethics Guidelines of the High-Level Expert Group on Artificial Intelligence

TechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV

Executive Summary. The process. Intended use

The SAFARI Syndrome. Implementing CRIS and Open Science By Joachim Schöpfel, University of Lille 3

RFID and Privacy an antagonism?

Autonomous Robotic (Cyber) Weapons?

Principles and Rules for Processing Personal Data

What does the revision of the OECD Privacy Guidelines mean for businesses?

Is Transparency a useful Paradigm for Privacy?

Data Protection and Ethics in Healthcare

Smart Energy Developements and Status for Germany. 4th German-Japanese Envionmental Dialog Forum

GDPR: A Step Towards a User-centric Internet? End of previous Forum article. Maciej Sobolewski, Joanna Mazur and Michał Paliński.

The NGI vision. Silvana Muscella BUSINESS, CAREER & FUNDING OPPORTUNITIES, W HILE DEVELOPING A HUMA N-CENTRIC INTERNET 27 MARCH MILAN, ITALY

Decentralisation, i.e. Internet for Social Good

UX Aspects of Threat Information Sharing

LAB3-R04 A Hard Privacy Impact Assessment. Post conference summary

End-to-End Privacy Accountability

Spring Conference of European Data Protection Authorities (Budapest, May 2016)

Frontiers of big and open linked data Seminar 11 May 2016, University of Minho, Braga

CLAUDETTE meets GDPR

Exploring the New Trends of Chinese Tourists in Switzerland

Ethics Review Data Sharing Bridging Legal Environments

International Seminar on Personal Data Protection and Privacy Câmara Dos Deputados-BRAZIL

GDPR Implications for ediscovery from a legal and technical point of view

Workshop on Legal and Policy Frameworks for Geospatial Information Management

Pure Versus Applied Informatics

By placing an order via this Web site on the first day of the fourth month of the year 2010 Anno Domini, you agree to grant Us a non transferable

Ocean Energy Europe Privacy Policy

Open Science. challenge and chance for medical librarians in Europe.

6.931 Development of Inventions and Creative Ideas Spring 2008

Enabling Trust in e-business: Research in Enterprise Privacy Technologies

OPEN JUSTICE PREREQUISITES: ICT USE AND ACCEPTANCE

Ten Principles for a Revised US Privacy Framework

PRIVACY ANALYTICS WHITE PAPER

Interaction btw. the GDPR and Clinical Trials Regulation

The Alan Turing Institute, British Library, 96 Euston Rd, London, NW1 2DB, United Kingdom; 3

Position Paper: Ethical, Legal and Socio-economic Issues in Robotics

Privacy Self-Protection for Connected Cars

Privacy and the EU GDPR US and UK Privacy Professionals

A DIALOGUE-BASED APPROACH TO MULTI-ROBOT TEAM CONTROL

clarification to bring legal certainty to these issues have been voiced in various position papers and statements.

Towards a Magna Carta for Data

Faculteit Rechtsgeleerdheid Faculteit Natuurkunde, Wiskunde en Informatica Leibniz Center for Law C-ITS and GDPR

Big Data & AI Governance: The Laws and Ethics

Lecture 7 Ethics, Privacy, and Politics in the Age of Data

The University of Sheffield Research Ethics Policy Note no. 14 RESEARCH INVOLVING SOCIAL MEDIA DATA 1. BACKGROUND

M.L.I.Sc. DEGREE EXAMINATION, DEC MASTER OF LIBRARY INFORMATION SCIENCE. Paper - I : Information Communication

Swedish Proposal for Research Data Act

Standardised Privacy Policies: A Post-mortem and. Promising Developments

Steen Schelle Jensen. Kamstrup A/S. #18DEdays

Building DIGITAL TRUST People s Plan for Digital: A discussion paper

Analysis of Privacy and Data Protection Laws and Directives Around the World

CONSENT IN THE TIME OF BIG DATA. Richard Austin February 1, 2017

DEVELOPMENTS IN EU MDD & IVDD SOFTWARE REGULATION

Artificial intelligence and judicial systems: The so-called predictive justice

The GDPR and Upcoming mhealth Code of Conduct. Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD)

The IEEE Global Initiative for Ethical Considerations in Artificial Intelligence and Autonomous Systems. Overview April, 2017

Control4 Smart Home Lighting Guide

The new deal of data in the data-driven person centric-care

Questionnaire Design with an HCI focus

WP6 Genomics Organizing the societal debate on the use of genomic information in healthcare

Details of the Proposal

ServDes Service Design Proof of Concept

Employees, contractors and other personnel of KKR should note that a separate privacy notice will be made available to them.

ANEC-ICT-2014-G-020final April 2014

The Intelligent Computer. Winston, Chapter 1

Privacy engineering, privacy by design, and privacy governance

Meaning, Mapping & Correspondence in Tangible User Interfaces

Interactive Workshop on Data Protection Impact Assessment

An Ontological Approach to Unified Contract Management

COMMISSION OF THE EUROPEAN COMMUNITIES COMMISSION RECOMMENDATION

Transcription:

DaPIS: an Ontology-based Data Protection Icon Set Monica Palmirani*, Arianna Rossi* Law via the Internet Florence, October 11, 2018 *CIRSFID, University of Bologna; ICR, University of Luxembourg

The information paradigm Right to be informed: And to be in control of our personal data: I have no idea of what is written here, but I AGREE 2. Problems with the information paradigm

Hurdles to effective privacy communication Wrong audience Wall of text Onslaught of notices Wrong timing Document s length 2. Problems with the information paradigm

The right to transparent information in the GDPR Art. 12: Machine-readable, standardised icons for an easily visible, intelligible and clearly legible overview of the intended processing 3. Transparency in the GDPR

Behavioural insights in the GDPR The concept of transparency in the GDPR is user-centric rather than legalistic. Article 29 Data Protection Working Party Guidelines on Transparency 2018 3. Transparency in the GDPR

From law to code to visualizations Lawyer-readable Machine-readable Human-readable

PrOnto: the Privacy Ontology Legal bases Data Data are processed Purposes Agents Data are processed for a specific purpose Have obligations Have rights Processing operations Rights & obligations 4. PrOnto: the Privacy Ontology

4. PrOnto: the Privacy Ontology Data

PrOnto: the Privacy Ontology Right to be informed Right to access Right to data portability Rights of the data subject Right to erasure Agents & Roles Processing operations 4. PrOnto: the Privacy Ontology Legal bases Processing purposes

Concept mining in privacy policies Consent Profiling Data subjects rights 5. Law, Code & Visualizations

Automatic retrieval of icons Consent Profiling Data subjects rights 5. Law, Code & Visualizations

DaPIS: Data Protection Icon Set Right to be informed Right to access Right to data portability Rights of the data subject Right to erasure Agents & Roles Processing operations 4. PrOnto: the Privacy Ontology Legal bases Processing purposes

Representation of data protection concepts and their interpretation Icon Representation Interpretation Concept Transfer of personal data outside the EU Knowledge Interpretant 6. Symbols and semiotics

Is a picture worth a thousand words? 6. Symbols and semiotics

No shared visual vocabulary for legal matters 6. Symbols and semiotics

6. Symbols and semiotics Some shared visual vocabulary from GUIs & cybersecurity

Legal Design Legal Design is an interdisciplinary approach to apply human-centered design to prevent or solve legal problems. M. Hagan, Legal Design Lab, Stanford Law School It prioritizes the point of view of users of the law not only lawyers and judges, but also citizens, consumers, businesses, etc. Legal Design Manifesto 2018 7. Legal Design

The design cycle M. Hagan, Law by Design, http://lawbydesign.co/ 7. Legal Design

DaPIS s design cycle Exploratory design workshop @Legal Design Lab, Stanford Law School 2nd evaluation @UNIBO Law&Design for Privacy @UNIBO with Academy of Arts 1st evaluation @Legal Design Lab, Stanford Law School 8. DaPIS: the Data Protection Icon Set Law&Design for Privacy @CIRSFID with Academy of Arts 3rd evaluation online

Agents & roles Data subject Supervisory authority Data controller 8. DaPIS: the Data Protection Icon Set

Data subjects rights Right to be informed Right to erasure Right to rectification Right to access 8. DaPIS: the Data Protection Icon Set

Processing purposes Provision of the service Service enhancement Research purposes Statistical purposes Security Profiling Direct marketing 8. DaPIS: the Data Protection Icon Set

Processing operations Anonymization Automated decision-making Pseudonymization Copying Encryption 8. DaPIS: the Data Protection Icon Set

Data storage and data transfer Data storage in the EU Transfer outside of the EU 8. DaPIS: the Data Protection Icon Set

Clear symbols versus unclear symbols? Transfer outside of the EU Provision of the service Problems: Necessity of standardization & education Representation: precision versus usability 8. DaPIS: the Data Protection Icon Set

9. Context of use Context of use privacy policies

Context of use multi-layered approach 9. Context of use

Context of use conditions & consequences 9. Context of use

10. Conclusions Check it out: https://www.legaldesignalliance.org/

10. Conclusions A network of legal information

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback