Forgotten @ Scale: A Practical Solution for Implementing the Right To Be Forgotten in Large-Scale Systems

10/30/2019
by   Abigail Goldsteen, et al.
0

The European General Data Protection Regulation asserts data subjects' right to be forgotten, i.e., their right to request that all their personal data be deleted from an organizations' data stores. However, fulfilling such requests in large-scale systems is technically challenging. It requires that organizations keep track of all locations in which an individual's data is stored, be able to access and delete it in a reasonable time frame, and be able to prove that all such data was in fact deleted. In addition, organizations must cope with complexities such as multiple, distributed, and continuously evolving systems of record, complex data retention policies and deletion approval workflows. We present a first design pattern and practical implementation of the right to be forgotten on a large scale in Big Data and cloud environments.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
07/08/2023

Right to be Forgotten in the Era of Large Language Models: Implications, Challenges, and Solutions

The Right to be Forgotten (RTBF) was first established as the result of ...
research
02/25/2020

Formalizing Data Deletion in the Context of the Right to be Forgotten

The right of an individual to request the deletion of their personal dat...
research
08/29/2023

Needle in the Haystack: Analyzing the Right of Access According to GDPR Article 15 Five Years after the Implementation

The General Data Protection Regulation (GDPR) was implemented in 2018 to...
research
06/12/2021

Amplifying Privacy: Scaling Up Transparency Research Through Delegated Access Requests

In recent years, numerous studies have used 'data subject access request...
research
12/08/2020

Class Clown: Data Redaction in Machine Unlearning at Enterprise Scale

Individuals are gaining more control of their personal data through rece...
research
09/09/2022

Scalable Discovery and Continuous Inventory of Personal Data at Rest in Cloud Native Systems

Cloud native systems are processing large amounts of personal data throu...
research
10/31/2019

GDPR Anti-Patterns: How Design and Operation of Modern Cloud-scale Systems Conflict with GDPR

In recent years, our society is being plagued by unprecedented levels of...

Please sign up or login with your details

Forgot password? Click here to reset