Towards Cataloguing Potential Derivations of Personal Data

• Published in: The Semantic Web: ESWC 2019 Satellite Events Vol. 11762; pp. 147 - 151
• Main Authors: Pandit, Harshvardhan J., Fernández, Javier D., Debruyne, Christophe, Polleres, Axel
• Format: Book Chapter
• Language: English
• Published: Switzerland Springer International Publishing AG 2019; Springer International Publishing
• Series: Lecture Notes in Computer Science
• Subjects: Derived data; GDPR; Personal data; Semantic web
• ISBN: 3030323269; 9783030323264
• ISSN: 0302-9743; 1611-3349
• DOI: 10.1007/978-3-030-32327-1_29

The General Data Protection Regulation (GDPR) has established transparency and accountability in the context of personal data usage and collection. While its obligations clearly apply to data explicitly obtained from data subjects, the situation is less clear for data derived from existing personal data. In this paper, we address this issue with an approach for identifying potential data derivations using a rule-based formalisation of examples documented in the literature using Semantic Web standards. Our approach is useful for identifying risks of potential data derivations from given data and provides a starting point towards an open catalogue to document known derivations for the privacy community, but also for data controllers, in order to raise awareness in which sense their data collections could become problematic.