An Open-Source Software Tool to Facilitate Data Protection Impact Assessments
Standard
An Open-Source Software Tool to Facilitate Data Protection Impact Assessments. / Riemann, Layla Tabea; Hähner, Felicia; Schmitz, Ann-Kathrin; Ataian, Maximilian; Jaster, Matthias; Ückert, Frank.
in: APPL SCI-BASEL, Jahrgang 13, Nr. 20, 11230, 12.10.2023.Publikationen: SCORING: Beitrag in Fachzeitschrift/Zeitung › SCORING: Zeitschriftenaufsatz › Forschung › Begutachtung
Harvard
APA
Vancouver
Bibtex
}
RIS
TY - JOUR
T1 - An Open-Source Software Tool to Facilitate Data Protection Impact Assessments
AU - Riemann, Layla Tabea
AU - Hähner, Felicia
AU - Schmitz, Ann-Kathrin
AU - Ataian, Maximilian
AU - Jaster, Matthias
AU - Ückert, Frank
PY - 2023/10/12
Y1 - 2023/10/12
N2 - In the realm of medical research, preserving patient privacy while facilitating effective research and collaborations poses a significant challenge. Data protection impact assessments (DPIAs) and associated methodologies have emerged as a response to this dual imperative. DPIAs necessitate expertise across diverse domains, resulting in a complex procedural landscape. To address this, we present “DPIA click&go”, a user-friendly tool designed to streamline the DPIA process in a plug-and-play manner. This tool enables users to semi-automatically select risks from predefined categories, construct evaluation matrices, access risk-mitigating measures, and re-evaluate risks after the application of mitigation strategies. Tailoring risks and measures to each institute’s needs is essential, facilitated by the provided data model, considerably simplifying DPIA creation at an institutional level. The efficacy of the DPIA click&go tool was validated with a real-world project, comparing its performance with a manually created DPIA in terms of risk coverage and mitigation strategies. The promising outcomes of this tool underscore its potential within the national data protection landscape, suggesting its possible foundational role in harmonizing data protection practices at a larger, potentially, European or global, scale.
AB - In the realm of medical research, preserving patient privacy while facilitating effective research and collaborations poses a significant challenge. Data protection impact assessments (DPIAs) and associated methodologies have emerged as a response to this dual imperative. DPIAs necessitate expertise across diverse domains, resulting in a complex procedural landscape. To address this, we present “DPIA click&go”, a user-friendly tool designed to streamline the DPIA process in a plug-and-play manner. This tool enables users to semi-automatically select risks from predefined categories, construct evaluation matrices, access risk-mitigating measures, and re-evaluate risks after the application of mitigation strategies. Tailoring risks and measures to each institute’s needs is essential, facilitated by the provided data model, considerably simplifying DPIA creation at an institutional level. The efficacy of the DPIA click&go tool was validated with a real-world project, comparing its performance with a manually created DPIA in terms of risk coverage and mitigation strategies. The promising outcomes of this tool underscore its potential within the national data protection landscape, suggesting its possible foundational role in harmonizing data protection practices at a larger, potentially, European or global, scale.
U2 - 10.3390/app132011230
DO - 10.3390/app132011230
M3 - SCORING: Journal article
VL - 13
JO - APPL SCI-BASEL
JF - APPL SCI-BASEL
SN - 2076-3417
IS - 20
M1 - 11230
ER -