Rashid Zaman, Marwan Hassani, Boudewijn F. van Dongen: Data Minimisation as Privacy and Trust Instrument in Business Processes. Business Process Management Workshops 2020: 17-29 View paper Abstract: Data is vital for almost all sorts of business processes and workflows. However, the possession of personal data of other beings bear consequences. Data is prone to abuses through the exposure to adversaries in case of data breaches […]
Mozafari Mehr A.S., de Carvalho R.M., van Dongen B. (2021) Detecting Privacy, Data and Control-Flow Deviations in Business Processes. In: Nurcan S., Korthaus A. (eds) Intelligent Information Systems. CAiSE 2021. Lecture Notes in Business Information Processing, vol 424. Springer, Cham. View the paper Abstract: Existing access control mechanisms are not sufficient for data protection. They are only preventive and cannot guarantee that data is accessed […]
Pietro Russo, Lorenzo Bracciale, Giuseppe Bianchi. Dare-to-Share: Collaborative privacy-preserving recommendations with (almost) no crypto. Security and Privacy, volume 4, issue 3, March 2021. View the paper Abstract: Collaborative recommending systems aim to predict a potential user-item rating on the basis of remaining ones. Since, in several contexts, sharing of other users’ ratings may be prevented by confidentiality concerns, several works have effectively addressed the design […]
Università di Roma “Tor Vergata” (URM) as a member of CNIT, collaborate with ETSI Technical Committee on Cybersecurity on specifications on Attribute-Based Encryption (ABE). It is possible to read a deliverable here.
We are joining an initiative for the writing of a CEN Workshop Agreement (CWA) on GDPR. The CWA will be ready in the first months of 2021.
In relation to certifications as provided in art. 42 and 43 GDPR, BPR4GDPR is collaborating with certification authorities such as europrivacy and auditor for the definition of GDPR certification, with particular attention to cloud services.
The project is interacting with the IEEE Task Force on Process Mining by providing demos for the ProM packages, data (using XES file format) other than several scientific papers listed in this page. Process mining is one of the distinguish methodology applied by BPR4GDPR to foster GDPR compliancy and process re-engineering. Actively participating in international discussion board and collaborating in IEEE Task Force on Process Mining helps […]
BPR4GDPR has joined the activities of the W3C Data Privacy Vocabularies and Controls CG (DPVCG) through its partner ABOVO. The aim of the DPVCG group is to develop a taxonomy of privacy terms, which include in particular terms from the GDPR, such as a taxonomy of personal data as well as a classification of purposes (i.e., purposes for data collection), and events of disclosures, consent, […]
The project has participated at the “International Workshop on Data Protection in Real-time: Transforming Privacy Law into Practice” workshop, Oxford, UK, September 2019, co-organised by the University of Oxford and OASIS.