TY - GEN
T1 - Enabling Data Subjects to Remain Data Owners
AU - Papadopoulou, Elizabeth
AU - Stobart, Alex
AU - Taylor, Nicholas Kenelm
AU - Williams, Morgan Howard
PY - 2015/5/29
Y1 - 2015/5/29
N2 - Users have become used to accepting two unfortunate consequences of complying with requests to supply personal data to service providers. Firstly, the personal data that a user supplies becomes the property of the service provider, which means that the data subject loses control over what is subsequently done with their data. Secondly, provision of services is made on an “all or nothing” basis, being dependent upon the user supplying all the personal data requested by a service or forgoing use of that service entirely. We present an approach to personal data management which avoids these two unnecessary disadvantages. Personal Data Stores enable individuals to retain ownership and control of their personal data, granting service providers access to specific items of that data upon request whilst remaining the owners of their data. Trusted third parties will be required to curate the data in order to ensure that it is non-repudiatable. Privacy Policy Negotiation will enable data subjects to negotiate with service providers about how much of their personal data they disclose and how detailed that data is. Different levels of service can be provided depending on what personal data a user is prepared to disclose. In this paper we describe systems and algorithms for Personal Data Stores and Privacy Policy Negotiation which have been implemented and tested separately and show how they can be combined to the benefit of data subjects.
AB - Users have become used to accepting two unfortunate consequences of complying with requests to supply personal data to service providers. Firstly, the personal data that a user supplies becomes the property of the service provider, which means that the data subject loses control over what is subsequently done with their data. Secondly, provision of services is made on an “all or nothing” basis, being dependent upon the user supplying all the personal data requested by a service or forgoing use of that service entirely. We present an approach to personal data management which avoids these two unnecessary disadvantages. Personal Data Stores enable individuals to retain ownership and control of their personal data, granting service providers access to specific items of that data upon request whilst remaining the owners of their data. Trusted third parties will be required to curate the data in order to ensure that it is non-repudiatable. Privacy Policy Negotiation will enable data subjects to negotiate with service providers about how much of their personal data they disclose and how detailed that data is. Different levels of service can be provided depending on what personal data a user is prepared to disclose. In this paper we describe systems and algorithms for Personal Data Stores and Privacy Policy Negotiation which have been implemented and tested separately and show how they can be combined to the benefit of data subjects.
U2 - 10.1007/978-3-319-19728-9_20
DO - 10.1007/978-3-319-19728-9_20
M3 - Conference contribution
SN - 978-3-319-19727-2
VL - 38
T3 - Smart Innovation, Systems and Technologies
SP - 239
EP - 248
BT - Smart Innovation, Systems and Technologies: Agent and Multi-Agent Systems: Technologies and Applications
PB - Springer
T2 - 9th International KES Conference on Agents and Multi-Agent Systems: Technologies and Applications
Y2 - 17 June 2015 through 19 June 2015
ER -