The growth of internet-funded businesses, such as Software as a Service (SaaS), Data as a Service (DaaS) and other models have slowly and steadily changed the circumstances of people’s personal privacy online. Nowadays with the rising proliferation of services and process digitization, individuals struggle to maintain the necessary level of control or awareness over the propagation of their personal or sensitive data along different stakeholders involved as controllers and/or processors counterparties in the digital transactional services. Hence people have been losing control of their personal data, which are normally managed and accessed through distinct controllers and processors and are not sure that their private information is properly managed on the Internet. Now, it is the time for people, companies and governments to take responsibility for personal data.
The EU General Data Protection Regulation (Regulation EU 2016/679 or GDPR) is an important step to take the responsibility for personal data protection. In fact, one of the main purposes of the GDPR is to ensure a fair and transparent and ease access by physical person to data processing made by controllers. It is of utmost importance to allow data subjects a full control in the use of their personal data, to protect their own rights. On the other hand, data controllers and processors must be compliant with the GDPR in order to avoid not only the GDPR prescribed sanctions but also to lose their customers’ trust with negative consequences on their business.
Keeping with this, PoseID-on aim is to develop and deliver an innovative intrinsically scalable platform, namely the Privacy Enhancing Dashboard for personal data protection, as an integrated and comprehensive solution aimed to safeguard the rights of data subjects (i.e. all those natural persons that represent the primary target of the new GDPR), as well as support organizations in data management and processing while ensuring GDPR compliance. The Privacy Enhanced Dashboard integrates cutting edge technologies and towards the organizations’ accountability and GDPR compliance as fa as data processing and exchange is concerned. Also, it will contribute to help organizations in the guarantee of fundamental rights of data subjects.
CyberEthics Lab.’s involvement in the project aims to conciliate the use of new and disruptive technologies such as the blockchain with the need of both protecting data subjects’ fundamental rights and being compliant with the European and national legal frameworks on privacy and data protection.
This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 786713