An Agile Approach to Validate a Formal Representation of the GDPR

Bartolini, Cesare; Lenzini, Gabriele; Santos, Cristiana

Reference : An Agile Approach to Validate a Formal Representation of the GDPR


	Document type :	Scientific journals : Article
	Discipline(s) :	Law, criminology & political science : Multidisciplinary, general & others Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/39327

Title :	An Agile Approach to Validate a Formal Representation of the GDPR
Language :	English
Author, co-author :	Bartolini, Cesare [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Lenzini, Gabriele [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Santos, Cristiana [> >]
Publication date :	2019
Journal title :	JSAI International Symposium on Artificial Intelligence
Publisher :	Springer Nature
Volume :	11717
Special issue title :	Lecture Notes in Artificial Intelligence (LNAI)
Peer reviewed :	Yes
Audience :	International
ISBN :	978-3-030-31604-4
Country :	Switzerland
Keywords :	[en] GDPR ; Data Protection Compliance ; Legal Validation ; Usability
Abstract :	[en] Modeling in a knowledge base of logic formulæ the articles of the GDPR enables semi-automatic reasoning of the Regulation. To be legally substantiated, it requires that the formulæ express validly the legal meaning of the Regulation’s articles. But legal experts are usually not familiar with logic, and this calls for an interdisciplinary validation methodology that bridges the communication gap between formal modelers and legal evaluators. We devise such a validation methodology and exemplify it over a knowledge base of articles of the GDPR translated <br />AQ2 into Reiﬁed I/O (RIO) logic and encoded in LegalRuleML. A pivotal element of the methodology is a human-readable intermediate representation of the logic formulæ that preserves the formulæ’s meaning while rendering it in a readable way to non-experts. After being applied over a use case, we prove that it is possible to retrieve feedback from legal experts about the formal representation of Art. 5.1a and Art. 7.1. What emerges is an agile process to build logic knowledge bases of legal texts, and to support their public trust, which we intend to use for a logic AQ3 model of the GDPR, called DAPRECO knowledge base.
Research centres :	Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Applied Security and Information Assurance Group (APSIA)
Funders :	Fonds National de la Recherche - FnR
Name of the research project :	DAPRECO (Data Protection Compliance)
Target :	Researchers ; Students ; Professionals
Permalink :	http://hdl.handle.net/10993/39327
	also: http://hdl.handle.net/10993/40576
Other URL :	https://doi.org/10.1007/978-3-030-31605-1_13
Mentions required by the publisher for OA :	The original publication is available at www.springerlink.com
FnR project :	FnR ; FNR11333956 > Gabriele Lenzini > DAPRECO > DAta Protection REgulation COmpliance > 01/02/2017 > 30/06/2019 > 2016

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Limited access	_489304_1_En_13_Chapter_Author -edited 19-9.pdf		Publisher postprint	1.42 MB	Request a copy

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices