ITU

Monitoring the GDPR: European Symposium on Research in Computer Security

Research output: Conference Article in Proceeding or Book/Report chapterArticle in proceedingsResearchpeer-review

Standard

Monitoring the GDPR : European Symposium on Research in Computer Security. / Kock, Emma Arfelt; Basin, David; Debois, Søren.

Computer Security – ESORICS 2019: European Symposium on Research in Computer Security. Springer, 2019. p. 681-699 (Lecture Notes in Computer Science, Vol. 11735).

Research output: Conference Article in Proceeding or Book/Report chapterArticle in proceedingsResearchpeer-review

Harvard

Kock, EA, Basin, D & Debois, S 2019, Monitoring the GDPR: European Symposium on Research in Computer Security. in Computer Security – ESORICS 2019: European Symposium on Research in Computer Security. Springer, Lecture Notes in Computer Science, vol. 11735, pp. 681-699, The 24th European Symposium on Research in Computer Security, Luxembourg, Luxembourg, 23/09/2019. https://doi.org/10.1007/978-3-030-29959-0_33

APA

Kock, E. A., Basin, D., & Debois, S. (2019). Monitoring the GDPR: European Symposium on Research in Computer Security. In Computer Security – ESORICS 2019: European Symposium on Research in Computer Security (pp. 681-699). Springer. Lecture Notes in Computer Science Vol. 11735 https://doi.org/10.1007/978-3-030-29959-0_33

Vancouver

Kock EA, Basin D, Debois S. Monitoring the GDPR: European Symposium on Research in Computer Security. In Computer Security – ESORICS 2019: European Symposium on Research in Computer Security. Springer. 2019. p. 681-699. (Lecture Notes in Computer Science, Vol. 11735). https://doi.org/10.1007/978-3-030-29959-0_33

Author

Kock, Emma Arfelt ; Basin, David ; Debois, Søren. / Monitoring the GDPR : European Symposium on Research in Computer Security. Computer Security – ESORICS 2019: European Symposium on Research in Computer Security. Springer, 2019. pp. 681-699 (Lecture Notes in Computer Science, Vol. 11735).

Bibtex

@inproceedings{54a376f2543c407f81453045db248b4f,
title = "Monitoring the GDPR: European Symposium on Research in Computer Security",
abstract = "The General Data Protection Regulation (GDPR) has substantially strengthened the requirements for data processing systems, requiring audits at scale. We show how and to what extent these audits can be automated. We contribute an analysis of which parts of the GDPR can be monitored, a formalisation of these parts in metric first-order temporal logic, and an application of the MonPoly system to automatically audit these parts. We validate our ideas on a case study using log data from industry, detecting actual violations. Altogether, we demonstrate both in theory and practice how to automate GDPR compliance checking.",
author = "Kock, {Emma Arfelt} and David Basin and S{\o}ren Debois",
year = "2019",
doi = "10.1007/978-3-030-29959-0_33",
language = "English",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "681--699",
booktitle = "Computer Security – ESORICS 2019",
address = "Germany",
note = "The 24th European Symposium on Research in Computer Security, ESORICS ; Conference date: 23-09-2019 Through 27-09-2019",

}

RIS

TY - GEN

T1 - Monitoring the GDPR

T2 - The 24th European Symposium on Research in Computer Security

AU - Kock, Emma Arfelt

AU - Basin, David

AU - Debois, Søren

N1 - Conference code: 24

PY - 2019

Y1 - 2019

N2 - The General Data Protection Regulation (GDPR) has substantially strengthened the requirements for data processing systems, requiring audits at scale. We show how and to what extent these audits can be automated. We contribute an analysis of which parts of the GDPR can be monitored, a formalisation of these parts in metric first-order temporal logic, and an application of the MonPoly system to automatically audit these parts. We validate our ideas on a case study using log data from industry, detecting actual violations. Altogether, we demonstrate both in theory and practice how to automate GDPR compliance checking.

AB - The General Data Protection Regulation (GDPR) has substantially strengthened the requirements for data processing systems, requiring audits at scale. We show how and to what extent these audits can be automated. We contribute an analysis of which parts of the GDPR can be monitored, a formalisation of these parts in metric first-order temporal logic, and an application of the MonPoly system to automatically audit these parts. We validate our ideas on a case study using log data from industry, detecting actual violations. Altogether, we demonstrate both in theory and practice how to automate GDPR compliance checking.

U2 - 10.1007/978-3-030-29959-0_33

DO - 10.1007/978-3-030-29959-0_33

M3 - Article in proceedings

T3 - Lecture Notes in Computer Science

SP - 681

EP - 699

BT - Computer Security – ESORICS 2019

PB - Springer

Y2 - 23 September 2019 through 27 September 2019

ER -

ID: 84814980