Automating GDPR Compliance using Policy Integrated Blockchain

Thumbnail Image

Files

960.pdf (3.67 MB)

Links to Files

https://ieeexplore.ieee.org/document/9123033

Permanent Link

http://hdl.handle.net/11603/19208

Collections

UMBC Information Systems Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

Type of Work

conference papers and proceedings preprints
Text

Department

Program

Citation of Original Publication

A. Mahindrakar and K. P. Joshi, "Automating GDPR Compliance using Policy Integrated Blockchain," 2020 IEEE 6th Intl Conference on Big Data Security on Cloud (BigDataSecurity), IEEE Intl Conference on High Performance and Smart Computing, (HPSC) and IEEE Intl Conference on Intelligent Data and Security (IDS), Baltimore, MD, USA, 2020, pp. 86-93, doi: 10.1109/BigDataSecurity-HPSC-IDS49724.2020.00026.

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
© 2020 IEEE

Subjects

UMBC Ebiquity Research Group

Abstract

Data Protection regulations, like GDPR, mandate security controls to secure Personal Identifiable Information (PII) of the users which they share with service providers. With the volume of shared data reaching exascale proportions, it is challenging to ensure GDPR compliance in real time. We propose a novel approach that integrates GDPR Ontology with Blockchain to facilitate real time automated data compliance. Our framework ensures data operation is allowed only when validated by data privacy policies in compliance with privacy rules in GDPR. When a valid transaction takes place the PII data is automatically stored off-chain in a database. Our system, built using Semantic Web and Ethereum Blockchain, includes an access-control system that enforces data privacy policy when data is shared with third parties.