Info: Zenodo’s user support line is staffed on regular business days between Dec 23 and Jan 5. Response times may be slightly longer than normal.

Published December 20, 2023 | Version preprint
Conference paper Open

Towards a Semantic Specification for GDPR Data Breach Reporting

Description

Data breaches and other security incidents are an emerging challenge in the digital era. The General Data Protection Regulation (GDPR) requires conducting an impact assessment to understand the effects of the breach, and to then notify authorities and affected individuals in certain cases. Communication of this information typically takes place via conventional mediums such as emails and forms on the websites of authorities, and is a manual process. To assist in developing tools to support data breach investigations, and to enable automated systems for assisting with breach assessments and GDPR compliance, we present a machine-readable specification for the representation and documentation of information related to data breaches and their communications. The specification uses current requirements from the GDPR obligations and authoritative guidelines. To represent information, it extends the Data Privacy Vocabulary (DPV) by introducing new concepts required for data breach relevant information.

Files

JURIX2023_Data_Breach.pdf

Files (104.5 kB)

Name Size Download all
md5:7e98e61ac7152b0aa4f88717e5f41996
104.5 kB Preview Download

Additional details

Funding

ADAPT SFI Research Centre 13/RC/2106_P2
Science Foundation Ireland