English
Related papers

Related papers: Design Challenges for GDPR RegTech

200 papers

Background: Governments worldwide are considering data privacy regulations. These laws, e.g. the European Union's General Data Protection Regulation (GDPR), require software developers to meet privacy-related requirements when interacting…

Software Engineering · Computer Science 2024-06-24 Lucas Franke , Huayu Liang , Sahar Farzanehpour , Aaron Brantly , James C. Davis , Chris Brown

The EU General Data Protection Regulation (GDPR), enforced from 25th May 2018, aims to reform how organisations view and control the personal data of private EU citizens. The scope of GDPR is somewhat unprecedented: it regulates every…

Computers and Society · Computer Science 2018-08-23 Sean Sirur , Jason R. C. Nurse , Helena Webb

The transparent and decentralized characteristics associated with blockchain can be both appealing and problematic when applied to a healthcare use-case. As health data is highly sensitive, it is also highly regulated to ensure the privacy…

Cryptography and Security · Computer Science 2020-09-29 Anton Hasselgren , Paul Kengfai Wan , Margareth Horn , Katina Kralevska , Danilo Gligoroski , Arild Faxvaag

The General Data Protection Regulation (GDPR) is a European Union regulation that will replace the existing Data Protection Directive on 25 May 2018. The most significant change is a huge increase in the maximum fine that can be levied for…

Artificial Intelligence · Computer Science 2018-09-18 John KC Kingston

This paper explores the importance of accountability to data protection, and how it can be built into the Internet of Things (IoT). The need to build accountability into the IoT is motivated by the opaque nature of distributed data flows,…

Human-Computer Interaction · Computer Science 2018-01-23 Lachlan Urquhart , Tom Lodge , Andy Crabtree

The recently introduced General Data Protection Regulation (GDPR) is forcing several companies to make significant changes to their systems to achieve compliance. Motivated by the finding that more than 30% of GDPR articles are related to…

Distributed, Parallel, and Cluster Computing · Computer Science 2019-05-17 Aashaka Shah , Vinay Banakar , Supreeth Shastri , Melissa Wasserman , Vijay Chidambaram

Data privacy legislation, such as GDPR and CCPA/CPRA, has rendered data privacy law compliance a requirement of all software systems. Developers need to implement various kinds of functionalities to cover law needs, including user rights…

Software Engineering · Computer Science 2025-12-18 Ioanna Theophilou , Georgia M. Kapitsaki

In our data-centric world, most services rely on collecting and using personal data. The EU's General Data Protection Regulation (GDPR) aims to enhance individuals' control over their data, but its practical impact is not well understood.…

Human-Computer Interaction · Computer Science 2022-03-11 Alex Bowyer , Jack Holt , Josephine Go Jefferies , Rob Wilson , David Kirk , Jan David Smeddinck

Regulatory compliance is increasingly being addressed in the practice of requirements engineering as a main stream concern. This paper points out a gap in the theoretical foundations of regulatory compliance, and presents a theory that…

Software Engineering · Computer Science 2010-02-22 Ivan Jureta , Alberto Siena , John Mylopoulos , Anna Perini , Angelo Susi

The use of software applications is inevitable as they provide different services to users. The software applications collect, store users' data, and sometimes share with the third party, even without the user consent. One can argue that…

Cryptography and Security · Computer Science 2020-08-10 Abdulrahman Alhazmi , Nalin Asanka Gamagedara Arachchilage

The application of the General Data Protection Regulation (GDPR) has significantly affected privacy requirements elicitation, modelling, and verification in Software Engineering (SE). One of the affected areas is requirements visualisation…

Software Engineering · Computer Science 2026-05-28 Evangelia Vanezi , Georgia M. Kapitsaki , Anna Philippou

Since GDPR went into effect in 2018, many other data protection and privacy regulations have been released. With the new regulation, there has been an associated increase in industry professionals focused on data protection and privacy.…

Computers and Society · Computer Science 2023-05-09 Thomas Şerban von Davier , Konrad Kollnig , Reuben Binns , Max Van Kleek , Nigel Shadbolt

It is important for organisations to ensure that their privacy policies are General Data Protection Regulation (GDPR) compliant, and this has to be done by the May 2018 deadline. However, it is also important for these policies to be…

Human-Computer Interaction · Computer Science 2018-12-03 Karen Renaud , Lynsay A. Shepherd

Ample research has demonstrated that compliance with data protection principles remains limited on the web and mobile. For example, almost none of the apps on the Google Play Store fulfil the minimum requirements regarding consent under EU…

Computers and Society · Computer Science 2023-02-28 Konrad Kollnig

Since its implementation in May 2018, the General Data Protection Regulation (GDPR) has prompted businesses to revisit and revise their data handling practices to ensure compliance. The privacy policy, which serves as the primary means of…

Cryptography and Security · Computer Science 2024-07-10 Lu Zhang , Nabil Moukafih , Hamad Alamri , Gregory Epiphaniou , Carsten Maple

Financial inclusion depends on providing adjusted services for citizens with disclosed vulnerabilities. At the same time, the financial industry needs to adhere to a strict regulatory framework, which is often in conflict with the desire…

Data protection laws such as GDPR aim to give users unprecedented control over their personal data. Compliance with these regulations requires systematically considering information flow and interactions among entities handling sensitive…

Programming Languages · Computer Science 2025-08-07 Chinmayi Prabhu Baramashetru , Paola Giannini , Silvia Lizeth Tapia Tarifa , Olaf Owe

This chapter introduces the Accountability Principle and its role in data protection governance. We focus on what accountability means in the context of cybersecurity management in smart homes, considering the EU General Data Protection Law…

Human-Computer Interaction · Computer Science 2020-06-22 Lachlan Urquhart , Jiahong Chen

What if the main data protection vulnerability is risk management? Data Protection merges three disciplines: data protection law, information security, and risk management. Nonetheless, very little research has been made on the field of…

Risk Management · Quantitative Finance 2025-02-18 Luis Enriquez

This poster describes work on the General Data Protection Regulation (GDPR) in open-source software. Although open-source software is commonly integrated into regulated software, and thus must be engineered or adapted for compliance, we do…

Software Engineering · Computer Science 2024-01-29 Lucas Franke , Huayu Liang , Aaron Brantly , James C Davis , Chris Brown