kau.se
System disruptions
We are currently experiencing disruptions on the search portals due to high traffic. We are working to resolve the issue, you may temporarily encounter an error message.
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • apa.csl
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Introducing the Concept of Data Subject Rights as a Service Under the GDPR
Department of Informatics, University of Oslo, Oslo, Norway.
Department of Informatics, University of Oslo, Oslo, Norway.
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science (from 2013).
2023 (English)In: Privacy Symposium 2023: Data Protection Law International Convergence and Compliance with Innovative Technologies (DPLICIT), Springer, 2023, , p. 154p. 17-31Conference paper, Published paper (Refereed)
Abstract [en]

The General Data Protection Regulation (GDPR) has introduced various data subject rights, e.g., the right of access, the right to erasure, or the right to data portability. These rights empower European individuals, the data subjects, to exercise control over their personal data stored or processed by organizations, the data controllers, in multiple ways. However, in practice, the enforcement of those rights faces several issues, as especially small- and medium-sized enterprises often lack the resources or know-how to implement a sufficient data subject rights solution. This leads to incomplete results that are not easily comprehensible for the data subjects.

To address these issues we introduce the concept of Data Subject Rights as a Service (DSRaaS). The goal of the DSRaaS provider is to act as a bridge between the data subjects and data controllers, by providing the five services data subject right enforcement, authentication, data model, data logbook, and consulting. In this context, we will also look at the role that data intermediaries, introduced by the Data Governance Act, can serve in DSRaaS.
Place, publisher, year, edition, pages
Springer, 2023. , p. 154p. 17-31
Keywords [en]
Data Subject Rights as a Service, GDPR, Data subject rights, Right of access
National Category
Computer and Information Sciences
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-99077DOI: 10.1007/978-3-031-44939-0_2ISBN: 978-3-031-44939-0 (electronic)OAI: oai:DiVA.org:kau-99077DiVA, id: diva2:1847440
Conference
Privacy Symposium 2023 - Data Protection Law International Convergence and Compliance with Innovative Technologies
Available from: 2024-03-27 Created: 2024-03-27 Last updated: 2024-03-27Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Authority records

Jensen, Meiko

Search in DiVA

By author/editor
Jensen, Meiko
By organisation
Department of Mathematics and Computer Science (from 2013)
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 68 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • apa.csl
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.45.0
|
WCAG
|
Karlstad University
|
University Library
|
Researchers support