Consent through the lens of semantics: State of the art survey and best practices

Anelia Kurteva,Tek Raj Chhetri,Harshvardhan J Pandit,Anna Fensel

doi:10.3233/sw-210438

Anelia Kurteva, Tek Raj Chhetri + Show 2 more

Open Access

https://doi.org/10.3233/sw-210438

Copy DOI

Journal: Semantic Web	Publication Date: May 14, 2024
Citations: 13	License type: CC BY 4.0

Affiliation: Universität Innsbruck, Trinity College Dublin

Abstract

The acceptance of the GDPR legislation in 2018 started a new technological shift towards achieving transparency. GDPR put focus on the concept of informed consent applicable for data processing, which led to an increase of the responsibilities regarding data sharing for both end users and companies. This paper presents a literature survey of existing solutions that use semantic technology for implementing consent. The main focus is on ontologies, how they are used for consent representation and for consent management in combination with other technologies such as blockchain. We also focus on visualisation solutions aimed at improving individuals’ consent comprehension. Finally, based on the overviewed state of the art we propose best practices for consent implementation.

Highlights

R In the era of Big Data and the Internet of Things an unprecedented amount of data is being generated
Other studies on blockchain such as [3,17,22] have highlighted the issue of computational complexity. Semantic technology such as ontologies are the key to achieving a common understanding between machines and humans
Understanding the benefit of semantics in the law domain, which we address by looking at semantic technology for consent implementation according to General Data Protection Regulation (GDPR)

Summary

Introduction

R In the era of Big Data and the Internet of Things an unprecedented amount of data is being generated. According O to the World Economic Forum, the data generated by connected devices, social networking sites, including personal information, is a new asset in modern time [61]. When the data consists of sensitive and personally. C identifiable information, depending on the way it is used, the impact on the individual and the society at large could be both positive and negative [62]. The use of the data and the potential of harm (to fundamental rights such as privacy) is the principle behind laws such as the European General Data Protection Regulation (GDPR)2[52], which came into effect on 25th May 2018, superseding its predecessor – the Data Protection Directive (95/46/EC) and the national laws transposing it. Kurteva et al / Consent through the lens of semantics: State of the art survey and best practices

Objectives

Methods

Findings

Conclusion