Data Protection Impact Assessment – an initial guide for communities
Hardt, M.
; Stevanovic, U.
; Stevanovic, U.Abstract:
This report presents the results of the desk study on the evaluation of risks to (personal) data protection as considered in the European General Data Protection Regulation (GDPR), for Infrastructures and their service providers that leverage federated identity management (FIM) to connect research and collaboration users. Specifically, it considers personal data collected as a result of using the infrastructure (not any risks relating to the research data itself, which is a community responsibility) and provides guidance to the Infrastructures concerning Data Protection Impact Assessment (DPIA) in the FIM context. The authors present recommendations to Research Communities for determining the necessity of formal DPIA and guidelines for its execution.
This document does not constitute legal advice in any specific jurisdiction
This document does not constitute legal advice in any specific jurisdiction
| Zugehörige Institution(en) am KIT | Scientific Computing Center (SCC) Universität Karlsruhe (TH) – Zentrale Einrichtungen (Zentrale Einrichtungen) |
| Publikationstyp | Forschungsbericht/Preprint |
| Publikationsjahr | 2018 |
| Sprache | Englisch |
| Identifikator | urn:nbn:de:swb:90-931194 KITopen-ID: 1000093119 |
| HGF-Programm | 46.12.02 (POF III, LK 01) Data Activities |
| Verlag | GÉANT |
| Bemerkung zur Veröffentlichung | The AARC Constortium, APPINT Members, at KIT: M. Hardt, U. Stevanovic. Peer Review: Ja: Diese Veröffentlichung wurde im Rahmen des AARC Projekts in einem mehrwöchigen Prozess intensiv begutachtet. |
| Vorab online veröffentlicht am | 30.04.2018 |
| Schlagwörter | AARC, AAI, Federation, Infrastructures, Recommendation, Privacy, GDPR |