Title
Designing Privacy-by-Design
Author
van Rest, J.H.C.
Boonstra, D.
Everts, M.H.
van Rijn, M.
van Paassen, R.J.G.
Contributor
Preneel, B. (editor)
Ikonomou, D. (editor)
Publication year
2014
Abstract
The proposal for a new privacy regulation d.d. January 25th 2012 introduces sanctions of up to 2% of the annual turnover of enterprises. This elevates the importance of mitigation of privacy risks. This paper makes Privacy by Design more concrete, and positions it as the mechanism to mitigate these privacy risks. In this vision paper, we describe how design patterns may be used to make the principle of Privacy by Design specific for relevant application domains. We identify a number of privacy design patterns as examples and we argue that the art is in finding the right level of abstraction to describe a privacy design pattern: the level where the data holder, data subject and privacy risks are described. We give an extended definition of Privacy by Design and, taking Solove’s model for privacy invasions as structuring principle, we describe a tool and method to use that tool to generate trust in systems by citizens.
Subject
Resilient Organisations Communication & Information Physics & Electronics
NO - Networked Organisations ISEC - Information Security DSS - Distributed Sensor Systems
ELSS - Earth, Life and Social Sciences TS - Technical Sciences
Safety and Security
Safety
Defence, Safety and Security
Privacy
Computer security
E-commerce
Risk mitigation
Design patterns
To reference this document use:
http://resolver.tudelft.nl/uuid:7631224e-07d4-4a2c-a0a3-be851d88c840
DOI
https://doi.org/10.1007/978-3-642-54069-1_4
TNO identifier
486544
Publisher
Springer, Berlin
Source
Privacy Technologies and Policy : First Annual Privacy Forum, APF 2012, Limassol, Cyprus, October 10-11, 2012, Revised Selected Papers, 55-72
Series
Lecture Notes in Computer Science
Document type
bookPart