A Model Enabling Law Compliant Privacy Protection through the Selection and Evaluation of Appropriate Security Controls

View Related Documents

Book Chapter
The EU Data Protection Directive 97/66/EC and related issues
2007, Outsourcing to India — A Legal Handbook, Pages 121-136
- Download PDF (1.5 MB)
Journal Article
How to integrate legal requirements into a requirements engineering methodology for the development of security and privacy patterns
Luca Compagna, Paul El Khoury, Alžběta Krausová, Fabio Massacci and Nicola Zannone
Artificial Intelligence and Law, 2009, Volume 17, Number 1, Pages 1-30
- Download PDF (658.5 KB)
- View HTML
Book Chapter
Digital Rights Management and Privacy – Legal Aspects in the European Union
Lee A. Bygrave
Lecture Notes in Computer Science, 2003, Volume 2770, Digital Rights Management, Pages 418-446
- Download PDF (229.0 KB)
Book Chapter
Dark scenarios
Pasi Ahonen, Petteri Alahuhta, Barbara Daskala, Sabine Delaitre and Paul De Hert, et al.
The International Library of Ethics, Law and Technology, 1, Volume 1, Safeguards in a World of Ambient Intelligence, Pages 33-142
- Download PDF (505.9 KB)
Book Chapter
Regulating Profiling in a Democratic Constitutional State
Serge Gutwirth and Paul De Hert
2008, Profiling the European Citizen, III, Pages 271-302
- Download PDF (186.6 KB)
Book Chapter
Consent, Proportionality and Collective Power
Lee A. Bygrave and Dag Wiese Schartum
2009, Reinventing Data Protection?, Part 3, Pages 157-173
- Download PDF (282.4 KB)
Book Chapter
Profiling and the Identity of the European Citizen
Mireille Hildebrandt
2008, Profiling the European Citizen, III, Pages 303-343
- Download PDF (241.0 KB)
Journal Article
Normative-informational positions: a modal-logical approach
Andrew J. I. Jones and Xavier Parent
Artificial Intelligence and Law, 2008, Volume 16, Number 1, Pages 7-23
- Download PDF (231.6 KB)
- View HTML
Book Chapter
Marrying Transparency Tools with User-Controlled Identity Management
Marit Hansen
IFIP International Federation for Information Processing, 2008, Volume 262, The Future of Identity in the Information Society, Pages 199-220
- Download PDF (2.4 MB)
Book Chapter
What ELSE? Regulation and Compliance in Medical Imaging and Medical Informatics
Penny Duquenoy, Carlisle George and Anthony Solomonides
Lecture Notes in Computer Science, 2008, Volume 4987, Medical Imaging and Informatics, Pages 340-357
- Download PDF (218.2 KB)

Abstract

The broad adoption and increasing reliance on computing and communication systems in applications domains such as health services, insurance, telecommunication and direct marketing leads to the creation, collection and processing of enormous amounts of personal data. Responding to this development, international bodies, the European Union and various countries established personal data protection laws and Authorities to regulate and control their application. The legal framework imposes the taking of appropriate security measures, that may be different compared with those specified by data controllers based on their business needs, since personal data are assets with, possibly, different values for the data subjects and the controllers. In this paper, we propose a security controls selection model, that supports data controllers in their effort to methodologically choose security measures compliant to privacy protection laws being in force. Also, we propose a process to assess (methodologically) the privacy protection requirements according to the related legal provisions and the selected and implemented security controls.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

A Model Enabling Law Compliant Privacy Protection through the Selection and Evaluation of Appropriate Security Controls

View Related Documents

Abstract

Fulltext Preview