Preserving Digital Privacy in e-Participation Environments: Towards GDPR Compliance

Diamantopoulou, Vasiliki; Androutsopoulou, Aggeliki; Gritzalis, Stefanos; Charalabidis, Yannis

doi:10.3390/info11020117

Cited by 10 publications

(7 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Legal Compliance and LGPD Principles: In this dimension, the level of compliance with the legal aspect of the LGPD and its principles were measured, as the principle of data minimization, or maintaining the purpose/legality of personal data and other aspects. This dimension contained seven questions (18)(19)(20)(21)(22)(23)(24). Dimension 4…”

Section: Methodsmentioning

confidence: 99%

“…According to Diamantopoulou et al [19] the application of GDPR is a challenge and should be seen as an opportunity for the redesign of systems that perform the processing of personal data, especially on sensitive systems, and that collect and process a large amount of personal data. In addition, the authors stated that it is important for organizations to at least inform data subjects about their processing activities and all employees in the organization need to know the principles of GDPR.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Diagnostic of Data Processing by Brazilian Organizations—A Low Compliance Issue

et al. 2021

View full text Add to dashboard Cite

In order to guarantee the privacy of users’ data, the Brazilian government created the Brazilian General Data Protection Law (LGPD). This article made a diagnostic of Brazilian organizations in relation to their suitability for LGPD, based on the perception of Information Technology (IT) practitioners who work in these organizations. We used a survey with 41 questions to diagnose different Brazilian organizations, both public and private. The diagnostic questionnaire was answered by 105 IT practitioners. The results show that 27% of organizations process personal data of public access based on good faith and LGPD principles. In addition, our findings also revealed that 16.3% of organizations have not established a procedure or methodology to verify that the LGPD principles are being respected during the development of services that will handle personal data from the product or service design phase to its execution and 20% of the organizations did not establish a communication process to the personal data holders, regarding the possible data breaches. The result of the diagnostic allows organizations and data users to have an overview of how the treatment of personal data of their customers is being treated and which points of attention are in relation to the principles of LGPD.

show abstract

Section: Methodsmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Diagnostic of Data Processing by Brazilian Organizations—A Low Compliance Issue

et al. 2021

View full text Add to dashboard Cite

show abstract

“…There is, however, some possibility of processing users' data without their consent, such as in compliance with legal obligation, in the implementation of public policies created by legislation or regulation of the Federal Public Administration, for the protection of one's own life or of third parties, by health surveillance in procedures carried out by multidisciplinary health professionals, for health services and/or for fraud prevention and security assurance of the holder in the identification and authentication processes in electronic systems (20). Thus, the application of LGPD has become a challenge and should be seen as an opportunity to redesign systems and processes capable of bringing security to the processing of personal data, especially in sensitive systems, and that collect and process many personal data (26).…”

Section: Information Security In the Lgpdmentioning

confidence: 99%

Using BPM for Identification and Processing of Personal and Sensitive Data of Donors: Conceptual Framework

Pires

2024

Braz J Exp Des Data Anal Inferential Stats

View full text Add to dashboard Cite

O estoque de bolsas de sangue para atender a população de pacientes que necessitam de transfusão é uma das principais preocupações dos Serviços de Hemoterapia dos Hospitais Públicos (PH). A complexidade da gestão da cadeia de abastecimento de sangue vai desde a captação de dadores de sangue até à distribuição de bolsas de sangue para transfusão. Compreender os processos da cadeia e manter a segurança dos dados pessoais e sensíveis dos doadores torna-se uma das premissas das organizações de saúde pública. A pesquisa visa criar e aplicar uma estrutura conceitual que utilize abordagens e conceitos de Business Process Management (BPM) para apoiar o gerenciamento e a segurança dos dados pessoais dos doadores. O método adotado foi a revisão de literatura baseada em artigos científicos e a utilização do BPM na construção do referencial conceitual e aplicação em um Serviço de Hemoterapia (HS) de um Hospital Público Federal (HFP) no Brasil. Ao mapear o processo de doação de sangue e utilizar o arcabouço conceitual, foram destacadas possíveis falhas que poderiam expor os dados pessoais e sensíveis dos candidatos à doação de sangue que violariam a Lei Geral de Proteção de Dados (LGPD). Utilizar o framework conceitual com BPM para modelar um processo organizacional facilita a identificação das vulnerabilidades dos dados pessoais e sensíveis do cidadão que circulam neste processo e discordam das normas da Lei. foram destacadas possíveis falhas que poderiam expor dados pessoais e sensíveis de candidatos à doação de sangue que violariam a Lei Geral de Proteção de Dados (LGPD). Utilizar o framework conceitual com BPM para modelar um processo organizacional facilita a identificação das vulnerabilidades dos dados pessoais e sensíveis do cidadão que circulam neste processo e discordam das normas da Lei. foram destacadas possíveis falhas que poderiam expor dados pessoais e sensíveis de candidatos à doação de sangue que violariam a Lei Geral de Proteção de Dados (LGPD). Utilizar o framework conceitual com BPM para modelar um processo organizacional facilita a identificação das vulnerabilidades dos dados pessoais e sensíveis do cidadão que circulam neste processo e discordam das normas da Lei.

show abstract

“…Using data always involves interpreting these signs. In order to achieve this, it is necessary to establish rules [41], [42] for the implementation of data management within the scope of the municipality. b.…”

Section: Fig 3 Data Challenge Loopmentioning

confidence: 99%

Comparative and Collaborative Data Management as a Driver for Regional Competitiveness Efficiency in the Economic Development Region

Prasetyo,

Trisnani,

Wahyudianto

et al. 2023

Advances in Social Science, Education and Humanities Research

View full text Add to dashboard Cite

The complexity of data quality management is revealed when people, processes and technology are involved in the process. The use of regional competitiveness data is a prerequisite for the analysis of economic development area boundaries in Central Java Province. This study aims to describe and analyse how regional competitiveness is managed based on six challenges that are considered to be closely related to data management. The research method refers to a qualitative approach that tends to describe the results of analyzing using study sites in Purwomanggung Development Area, Central Java Province. Secondary data is supported by stakeholders related to the study; primary data are presented with sources from tracking regional competitiveness needs. Collecting data took four months from July to October 2022. The analysis was presented by visualising regional competitiveness data in five regions within the boundaries of Purwomanggung Economic Development Area. The study results found regional competitiveness data management based on indices, aspects and pillars for five regions in Purwomanggung Economic Development Area. The differences in regional competitiveness data management were due to the management of policy and regulatory issues, governance issues, human and behaviour issues, process and quality issues, technological issues, and cultural and organizational issues. The implications of this research place policy challenges as a key strategic process in the management of regional competitiveness data.

show abstract

Preserving Digital Privacy in e-Participation Environments: Towards GDPR Compliance

Cited by 10 publications

References 41 publications

Diagnostic of Data Processing by Brazilian Organizations—A Low Compliance Issue

Diagnostic of Data Processing by Brazilian Organizations—A Low Compliance Issue

Using BPM for Identification and Processing of Personal and Sensitive Data of Donors: Conceptual Framework

Comparative and Collaborative Data Management as a Driver for Regional Competitiveness Efficiency in the Economic Development Region

Contact Info

Product

Resources

About