Legislative Compliance Assessment: Framework, Model and GDPR Instantiation

Sushant Agarwal, Simon Steyskal, Franjo Antunovic, Sabrina Kirrane

Publication: Chapter in book/Conference proceedingContribution to conference proceedings

Abstract

Legislative compliance assessment tools are commonly used by companies to help them to understand their legal obligations. One of the primary limitations of existing tools is that they tend to consider each regulation in isolation. In this paper, we propose a flexible and modular compliance assessment framework that can support multiple legislations. Additionally, we describe our extension of the Open Digital Rights Language (ODRL) so that it can be used not only to represent digital rights but also legislative obligations, and discuss how the proposed model is used to develop a flexible compliance system, where changes to the obligations are automatically reflected in the compliance assessment tool. Finally, we demonstrate the effectiveness of the proposed approach through the development of a General Data Protection Regulatory model and compliance assessment tool.
Original languageEnglish
Title of host publication6th Annual Privacy Forum, APF 2018, Barcelona, Spain, June 13-14, 2018, Revised Selected Papers
Editors Medina, M., Mitrakas, A., Rannenberg, K., Schweighofer, E., Tsouroulas, N.
Place of PublicationBarcelona
Pages1
Publication statusPublished - 2018

Austrian Classification of Fields of Science and Technology (ÖFOS)

  • 502050 Business informatics

Cite this