Towards an effective privacy impact and risk assessment methodology: risk analysis
Privacy Impact Assessments (PIAs) play a crucial role in providing privacy protection for data subjects and supporting risk management. From an engineering perspective, the core of a PIA is a risk assessment, which typically follows a step-by-step process of risk identification and risk mitigation....
Main Authors: | , |
---|---|
Format: | Conference item |
Published: |
Springer, Cham
2018
|
_version_ | 1797092067905634304 |
---|---|
author | Alshammari, M Simpson, A |
author_facet | Alshammari, M Simpson, A |
author_sort | Alshammari, M |
collection | OXFORD |
description | Privacy Impact Assessments (PIAs) play a crucial role in providing privacy protection for data subjects and supporting risk management. From an engineering perspective, the core of a PIA is a risk assessment, which typically follows a step-by-step process of risk identification and risk mitigation. In order for a PIA to be holistic and effective, it needs to be complemented by an appropriate privacy risk model that considers legal, organisational, societal and technical aspects. We propose a data-centric approach for identifying and analysing potential privacy risks in a comprehensive manner. |
first_indexed | 2024-03-07T03:41:04Z |
format | Conference item |
id | oxford-uuid:bde8460d-38cc-4c94-a57c-ede41842b5f2 |
institution | University of Oxford |
last_indexed | 2024-03-07T03:41:04Z |
publishDate | 2018 |
publisher | Springer, Cham |
record_format | dspace |
spelling | oxford-uuid:bde8460d-38cc-4c94-a57c-ede41842b5f22022-03-27T05:35:19ZTowards an effective privacy impact and risk assessment methodology: risk analysisConference itemhttp://purl.org/coar/resource_type/c_5794uuid:bde8460d-38cc-4c94-a57c-ede41842b5f2Symplectic Elements at OxfordSpringer, Cham2018Alshammari, MSimpson, APrivacy Impact Assessments (PIAs) play a crucial role in providing privacy protection for data subjects and supporting risk management. From an engineering perspective, the core of a PIA is a risk assessment, which typically follows a step-by-step process of risk identification and risk mitigation. In order for a PIA to be holistic and effective, it needs to be complemented by an appropriate privacy risk model that considers legal, organisational, societal and technical aspects. We propose a data-centric approach for identifying and analysing potential privacy risks in a comprehensive manner. |
spellingShingle | Alshammari, M Simpson, A Towards an effective privacy impact and risk assessment methodology: risk analysis |
title | Towards an effective privacy impact and risk assessment methodology: risk analysis |
title_full | Towards an effective privacy impact and risk assessment methodology: risk analysis |
title_fullStr | Towards an effective privacy impact and risk assessment methodology: risk analysis |
title_full_unstemmed | Towards an effective privacy impact and risk assessment methodology: risk analysis |
title_short | Towards an effective privacy impact and risk assessment methodology: risk analysis |
title_sort | towards an effective privacy impact and risk assessment methodology risk analysis |
work_keys_str_mv | AT alshammarim towardsaneffectiveprivacyimpactandriskassessmentmethodologyriskanalysis AT simpsona towardsaneffectiveprivacyimpactandriskassessmentmethodologyriskanalysis |