Abstract
People's usage of social networks, mobile applications, websites, sensor networks and other computer systems leads to a massive production of personal data about their behaviors and preferences. Personal data are used by organizations in business and marketing tasks. However, details about personal data usage are often not accessible or clear to data subject, raising concerns about privacy and security. Presentation of information about personal data usage needs improvement towards Personal Data Transparency. Thus, this paper aims to present the TR-Model, a Metadata Application Profile guideline that intends to propose a standardization on information to be considered minimally necessary to Personal Data Transparency as well as a set of specifications to guide developers on how to present this data. TR-Model elements are focused providing Personal Data Transparency in a user-friendly and high quality format. TR-Model presents a set of specification based on entities, metadata, metaevents and descriptions. The model evaluation was based on user testing in several scenarios of usage of personal data in a gym application tool. The information presented was created based on the TR-Model metadata, metaevents and descriptions. Participants evaluated transparency considering dimensions of Human-Computer Interaction and Information Quality. Participants' opinions were recorded in surveys and analyzed with descriptive statistics; the results indicate that the TR-Model was effective in supporting the production of friendly, understandable and relevant Transparency for data subjects, in compliance with regulations like GDPR.
Highlights
The use of Personal Data produced as a result of interaction between people and hardware/software resources has become common practice [1]
The descriptions were created based on HCI Features [51] and Information Quality Dimensions [52] as we considered techniques used to provide appropriated information visualization for the data subject
We developed five scenarios, in which the user was presented to usual situations of Personal Data Transparency relevance
Summary
The use of Personal Data produced as a result of interaction between people and hardware/software resources has become common practice [1]. According to General Data Protection Regulation (GDPR) [2], Personal Data are any information relating to an identified or identifiable natural person (‘data subject’). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as name, identification number, location data, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. The use of technological resources is responsible for data generation that, some how, reflect the behavior, preferences or data subject’ features. Examples include: being part of a community on a social network can tell about a person’s interest in a particular subject; the repeated e-commerce portals access may indicate the desire for buying specific products; or even the use of credit card in a region or type of commerce may define buying interests and profiles [5], [6]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
