English
Related papers

Related papers: Machine Understandable Policies and GDPR Complianc…

200 papers

Conformance checking, one of the main process mining operations, aims to identify discrepancies between a process model and an event log. The model represents the expected behaviour, whereas the event log represents the actual process…

Cryptography and Security · Computer Science 2026-05-04 Luis Rodríguez-Flores , Luciano García-Bañuelos , Abel Armas-Cervantes , Astrid Rivera-Partida

This research explores the application of Large Language Models (LLMs) for automating the extraction of requirement-related legal content in the food safety domain and checking legal compliance of regulatory artifacts. With Industry 4.0…

Software Engineering · Computer Science 2024-04-29 Shabnam Hassani

Conversational agents open the world to new opportunities for human interaction and ubiquitous engagement. As their conversational abilities and knowledge has improved, these agents have begun to have access to an increasing variety of…

Computers and Society · Computer Science 2021-06-22 Rahime Belen Saglam , Jason R. C. Nurse

The European Union (EU) has been pursuing a new strategy under the umbrella label of digital sovereignty. Data is an important element in this strategy. To this end, a specific Data Governance Act was enacted in 2022. This new regulation…

Computers and Society · Computer Science 2023-03-30 Jukka Ruohonen , Sini Mickelsson

Human oversight requirements are a core component of the European AI Act and in AI governance. In this paper, we highlight key challenges in testing for compliance with these requirements. A central difficulty lies in balancing simple, but…

Human-Computer Interaction · Computer Science 2025-07-25 Markus Langer , Veronika Lazar , Kevin Baum

As cloud services become central in an increasing number of applications, they process and store more personal and business-critical data. At the same time, privacy and compliance regulations such as GDPR, the EU ePrivacy regulation, PCI,…

Cryptography and Security · Computer Science 2020-12-22 Immanuel Kunz , Valentina Casola , Angelika Schneider , Christian Banse , Julian Schütte

Transparency and data portability are two core principles of modern privacy legislations such as the GDPR. From the regulatory perspective, providing individuals (data subjects) with access to their data is a main building block for…

Computers and Society · Computer Science 2023-05-08 Nicola Leschke , Florian Kirsten , Frank Pallas , Elias Grünewald

To help enforce data-protection regulations such as GDPR and detect unauthorized uses of personal data, we develop a new \emph{model auditing} technique that helps users check if their data was used to train a machine learning model. We…

Cryptography and Security · Computer Science 2019-05-21 Congzheng Song , Vitaly Shmatikov

The Solid specification aims to empower data subjects by giving them direct access control over their data across multiple applications. As governments are manifesting their interest in this framework for citizen empowerment and…

Cryptography and Security · Computer Science 2022-10-18 Christian Esposito , Olaf Hartig , Ross Horne , Chang Sun

Organizational cybersecurity policies are often examined to determine whether they adequately comply standard security controls. This task is difficult because control statements are abstract, whereas policy documents describe governance…

Cryptography and Security · Computer Science 2026-05-11 Bikash Saha , Sandeep Kumar Shukla

The last few years have witnessed a spate of data protection regulations in conjunction with an ever-growing appetite for data usage in large businesses, which presents significant challenges for businesses to maintain compliance. To…

Public attention towards explainability of artificial intelligence (AI) systems has been rising in recent years to offer methodologies for human oversight. This has translated into the proliferation of research outputs, such as from…

Computers and Society · Computer Science 2023-04-25 Luca Nannini , Agathe Balayn , Adam Leon Smith

Identity Management Systems (IdMs) have complemented how users are identified, authenticated, and authorised on e-services. Among the methods used for this purpose are traditional IdMs (isolated, centralised and federated) that mostly rely…

Cryptography and Security · Computer Science 2024-09-06 Abubakar-Sadiq Shehu

The explosive growth of machine learning has made it a critical infrastructure in the era of artificial intelligence. The extensive use of data poses a significant threat to individual privacy. Various countries have implemented…

Cryptography and Security · Computer Science 2024-06-11 Hengzhu Liu , Ping Xiong , Tianqing Zhu , Philip S. Yu

Automating the detection of EU General Data Protection Regulation (GDPR) violations in source code is a critical but underexplored challenge. We introduce \textbf{GDPR-Bench-Android}, the first comprehensive benchmark for evaluating diverse…

Software Engineering · Computer Science 2025-11-04 Huaijin Ran , Haoyi Zhang , Xunzhu Tang

In this paper, we propose a tool, called DataProVe, for specifying high-level data protection policies and system architectures, as well as verifying the conformance between them in a fully automated way. The syntax of the policies and the…

Cryptography and Security · Computer Science 2020-12-18 Vinh Thong Ta

Regulations introduced by General Data Protection Regulation (GDPR) in the EU or California Consumer Privacy Act (CCPA) in the US have included provisions on the \textit{right to be forgotten} that mandates industry applications to remove…

Computation and Language · Computer Science 2022-12-20 Vinayshekhar Bannihatti Kumar , Rashmi Gangadharaiah , Dan Roth

Policy compliance assessment is a fundamental task of evaluating whether an input case strictly complies with a set of human-defined rules, more generally known as policies. In practice, human experts follow a systematic, step-by-step…

Computation and Language · Computer Science 2025-09-30 Joseph Marvin Imperial , Harish Tayyar Madabushi

Growing recognition of the potential for exploitation of personal data and of the shortcomings of prior privacy regimes has led to the passage of a multitude of new online privacy regulations. Some of these laws -- notably the European…

Computers and Society · Computer Science 2023-12-27 Eleanor Birrell , Jay Rodolitz , Angel Ding , Jenna Lee , Emily McReynolds , Jevan Hutson , Ada Lerner

Data collection purposes and their descriptions are presented on almost all privacy notices under the GDPR, yet there is a lack of research focusing on how effective they are at informing users about data practices. We fill this gap by…

Human-Computer Interaction · Computer Science 2024-02-07 Lin Kyi , Abraham Mhaidli , Cristiana Santos , Franziska Roesner , Asia Biega