A Knowledge Representation of Cloud Data controls for EU GDPR Compliance

Files

891.pd.pdf (310.73 KB)

Links to Files

https://ieeexplore.ieee.org/document/8495788

Permanent Link

http://hdl.handle.net/11603/11637

Collections

UMBC Information Systems Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

2018-07-06

Type of Work

conference papers and proceedings preprints
Text

Department

Program

Citation of Original Publication

L. Elluri and K. P. Joshi, "A Knowledge Representation of Cloud Data Controls for EU GDPR Compliance," 2018 IEEE World Congress on Services (SERVICES), San Francisco, CA, 2018, pp. 45-46, doi: 10.1109/SERVICES.2018.00036.

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
© 2018 IEEE

Subjects

Data Protection
Ontology
General Data Protection Regulation
Organizations
UMBC Ebiquity Research Group

Abstract

The rollout of European Union’s General Data Protection Regulation (EU GDPR) will have a far-reaching effect on Cloud data privacy and compliance for both the Cloud Service Providers (Data Providers) and the Consumers (Data Consumers). GDPR mandates that organizations collecting and processing information related to EU citizens adhere to its articles irrespective of where they are located or where the data is stored. This regulation is currently available only in the textual format and so requires significant manual effort to ensure its compliance. We have developed a semantically rich Ontology (or knowledge graph) to represent the rules and regulations mandated for both the cloud data consumers and providers by EU GDPR. In the Ontology, we have identified the different roles and their corresponding obligations under the GDPR articles. This knowledge graph, that is available in public domain, is machine processable and will help in automating EU GDPR regulation compliance.