DeepAI AI Chat
Log In Sign Up

An operational architecture for privacy-by-design in public service applications

by   Prashant Agrawal, et al.

Governments around the world are trying to build large data registries for effective delivery of a variety of public services. However, these efforts are often undermined due to serious concerns over privacy risks associated with collection and processing of personally identifiable information. While a rich set of special-purpose privacy-preserving techniques exist in computer science, they are unable to provide end-to-end protection in alignment with legal principles in the absence of an overarching operational architecture to ensure purpose limitation and protection against insider attacks. This either leads to weak privacy protection in large designs, or adoption of overly defensive strategies to protect privacy by compromising on utility. In this paper, we present an operational architecture for privacy-by-design based on independent regulatory oversight stipulated by most data protection regimes, regulated access control, purpose limitation and data minimisation. We briefly discuss the feasibility of implementing our architecture based on existing techniques. We also present some sample case studies of privacy-preserving design sketches of challenging public service applications.


page 1

page 2

page 3

page 4


Privacy Issues and Data Protection in Big Data: A Case Study Analysis under GDPR

Big data has become a great asset for many organizations, promising impr...

Online publication of court records: circumventing the privacy-transparency trade-off

The open data movement is leading to the massive publishing of court rec...

PrivacyDates: A Framework for More Privacy-Preserving Timestamp Data Types

Case studies of application software data models indicate that timestamp...

Privacy Parameter Variation Using RAPPOR on a Malware Dataset

Stricter data protection regulations and the poor application of privacy...

Messaging with Purpose Limitation – Privacy-Compliant Publish-Subscribe Systems

Purpose limitation is an important privacy principle to ensure that pers...

SimBle: Generating privacy preserving real-world BLE traces with ground truth

Bluetooth has become critical as many IoT devices are arriving in the ma...