Qualifying and Measuring Transparency: A Medical Data System Case Study

Interdisciplinary Research Group in Socio-technical Cybersecurity

Qualifying and Measuring Transparency: A Medical Data System Case Study

Dayana Spagnuelo, Cesare Bartolini, Gabriele Lenzini
Abstract:
Transparency is a data processing principle enforced by the GDPR but purposely left open to interpretation. As such, the means to adhere to it are left unspecified. Article 29 Working Party provides practical guidance on how to interpret transparency, however there are no defined requirements nor ways to verify the quality of the implementation of transparency. We address this problem. We discuss and define applicable metrics for transparency, propose how measurement can be conducted in an operative system, and suggest a practical way in which these metrics can be interpreted in order to increase confidence that transparency is realised in a system.
Authors:
Dayana Spagnuelo, Cesare Bartolini, Gabriele Lenzini
Publication date:
2020
Published in:
Computers and Security
Reference:
Spagnuelo, D., Bartolini, C., & Lenzini, G. (2020). Qualifying and Measuring Transparency: A Medical Data System Case Study. Computers & Security, 101717.

Get in touch with us

SnT – Interdisciplinary Centre for Security, Reliability and Trust
29, Avenue J.F Kennedy L-1855 Luxembourg
info-irisc-lab@uni.lu