The General Data Protection Regulation: Requirements, Architectures, and Constraints

07/17/2019
by   Kalle Hjerppe, et al.
0

The General Data Protection Regulation (GDPR) in the European Union is the most famous recently enacted privacy regulation. Despite of the regulation's legal, political, and technological ramifications, relatively little research has been carried out for better understanding the GDPR's practical implications for requirements engineering and software architectures. Building on a grounded theory approach with close ties to the Finnish software industry, this paper contributes to the sealing of this gap in previous research. Three questions are asked and answered in the context of software development organizations. First, the paper elaborates nine practical constraints under which many small and medium-sized enterprises (SMEs) often operate when implementing solutions that address the new regulatory demands. Second, the paper elicits nine regulatory requirements from the GDPR for software architectures. Third, the paper presents an implementation for a software architecture that complies both with the requirements elicited and the constraints elaborated.

READ FULL TEXT

page 6

page 10

research
06/07/2021

Packaged Software Implementation Requirements Engineering by Small Software Enterprises

Small to medium sized business enterprises (SMEs) generally thrive becau...
research
05/28/2020

A Technical Look At The Indian Personal Data Protection Bill

The Indian Personal Data Protection Bill 2019 provides a legal framework...
research
02/20/2023

A Text Mining Analysis of Data Protection Politics: The Case of Plenary Sessions of the European Parliament

Data protection laws and policies have been studied extensively in recen...
research
09/17/2023

Embedded Software Development with Digital Twins: Specific Requirements for Small and Medium-Sized Enterprises

The transformation to Industry 4.0 changes the way embedded software sys...
research
06/08/2020

Engineering Privacy by Design: Are engineers ready to live up to the challenge?

Organizations struggle to comply with legal requirements as well as cust...
research
06/16/2021

RASAECO: Requirements Analysis of Software for the AECO Industry

Digitalization is forging its path in the architecture, construction, en...
research
03/26/2019

Data Protection by Design for Cybersecurity Systems in a Smart Home Environment

The present paper deals with the elucidation and implementation of the D...

Please sign up or login with your details

Forgot password? Click here to reset