I Agree: Customize your Personal Data Processing with the CoRe User Interface

Olha Drozd, Sabrina Kirrane

Publication: Chapter in book/Conference proceedingContribution to conference proceedings

138 Downloads (Pure)

Abstract

The General Data Protection Regulation (GDPR) requires, except for some predefined scenarios (e.g., contract performance, legal obligations, vital interests, etc.), obtaining consent from the data subjects for the processing of their personal data. Companies that want to process personal data of the European Union (EU) citizens but are located outside the EU also have to comply with the GDPR. Existing mechanisms for obtaining consent involve presenting the data subject with a document where all possible data processing, done by the entire service, is described in very general terms. Such consent is neither specific nor informed. In order to address this challenge, we introduce a consent request (CoRe) user interface (UI) with maximum control over the data processing and a simplified CoRe UI with reduced control options. Our CoRe UI not only gives users more control over the processing of their personal data but also, according to the usability evaluations reported in the paper, improves their comprehension of consent requests.
Original languageEnglish
Title of host publicationTrust, Privacy and Security in Digital Business
Subtitle of host publication16th International Conference, TrustBus 2019, Linz, Austria, August 26–29, 2019, Proceedings
EditorsStefanos Gritzalis, Edgar R. Weippl, Sokratis K. Katsikas, Gabriele Anderst-Kotsis, A Min Tjoa, Ismail Khalil
Place of PublicationCham
PublisherSpringer
Pages17-32
Edition1
ISBN (Electronic)978-3-030-27813-7
ISBN (Print)978-3-030-27812-0
DOIs
Publication statusPublished - 2019

Publication series

SeriesLecture Notes in Computer Science (LNCS)
Number11711
ISSN0302-9743

Austrian Classification of Fields of Science and Technology (ÖFOS)

  • 102
  • 102015 Information systems
  • 502050 Business informatics
  • 505002 Data protection
  • I Agree: Customize your Personal Data Processing with the CoRe User Interface

    Drozd, O. & Kirrane, S., 2019, Trust, Privacy and Security in Digital Business : 16th International Conference, TrustBus 2019, Linz, Austria, August 26–29, 2019, Proceedings. Gritzalis, S., Weippl, E. R., Katsikas, S. K., Anderst-Kotsis, G., Tjoa, A. M. & Khalil, I. (eds.). 1 ed. Cham: Springer, p. 17-32 (Lecture Notes in Computer Science (LNCS); No. 11711).

    Publication: Chapter in book/Conference proceedingContribution to conference proceedings

    Open Access
    File
    138 Downloads (Pure)

Cite this