Journal
ACM COMPUTING SURVEYS
Volume 55, Issue 9, Pages -Publisher
ASSOC COMPUTING MACHINERY
DOI: 10.1145/3558766
Keywords
Personal data; control rights; compliance
Categories
Ask authors/readers for more resources
There is a trend towards providing extended data control to their owners, driven by the introduction of GDPR. This paper surveys the literature to explore existing approaches for personal data control, which mainly focus on facilitating compliance. The privacy regulations in different regions are also examined. Based on the review, technical requirements, research gaps, and potential future directions are identified.
There has been a trend of moving from simply de-identification to providing extended data control to their owner (e.g., data portability and right to be forgotten), partly due to the introduction of the General Data Protection Regulation (GDPR). Hence, in this paper, we survey the literature to provide an in-depth understanding of the existing approaches for personal data control (e.g., we observe that most existing approaches are generally designed to facilitate compliance), as well as the privacy regulations in Europe, United Kingdom, California, South Korea, and Japan. Based on the review, we identify the associated technical requirements, as well as a number of research gaps and potential future directions (e.g., the need for transparent processing of personal data and establishment of clear procedure in ensuring personal data control).
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available