skip to main content
US FlagAn official website of the United States government
dot gov icon
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
https lock icon
Secure .gov websites use HTTPS
A lock ( lock ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Explore Research Products in the PAR
It may take a few hours for recently added research products to appear in PAR search results.


Title: Position: GDPR Compliance by Construction
New laws such as the European Union’s General Data Protection Regulation (GDPR) grant users unprecedented control over personal data stored and processed by businesses. Compliance can require expensive manual labor or retrofitting of existing systems, e.g., to handle data retrieval and removal requests. We argue for treating these new requirements as an opportunity for new system designs. These designs should make data ownership a first-class concern and achieve compliance with privacy legislation by construction. A compliant-by-construction system could build a shared database, with similar performance as current systems, from personal databases that let users contribute, audit, retrieve, and remove their personal data through easy-to-understand APIs. Realizing compliant-by-construction systems requires new cross-cutting abstractions that make data dependencies explicit and that augment classic data processing pipelines with ownership information. We suggest what such abstractions might look like, and highlight existing technologies that we believe make compliant-by-construction systems feasible today. We believe that progress towards such systems is at hand, and highlight challenges for researchers to address to make them a reality.  more » « less
Award ID(s):
1704172 1704376
PAR ID:
10129002
Author(s) / Creator(s):
Date Published:
Journal Name:
Gadepally V. et al. (eds) Heterogeneous Data Management, Polystores, and Analytics for Healthcare. DMAH 2019, Poly 2019. Lecture Notes in Computer Science, vol 11721.
Format(s):
Medium: X
Sponsoring Org:
National Science Foundation
More Like this
  1. ; ; ; ; ; ; ; ; (, Proceedings of the 17th USENIX Symposium on Operating Systems Design and Implementation (OSDI))
    Data privacy laws like the EU’s GDPR grant users new rights, such as the right to request access to and deletion of their data. Manual compliance with these requests is error-prone and imposes costly burdens especially on smaller organizations, as non-compliance risks steep fines. K9db is a new, MySQL-compatible database that complies with privacy laws by construction. The key idea is to make the data ownership and sharing semantics explicit in the storage system. This requires K9db to capture and enforce applications’ complex data ownership and sharing semantics, but in exchange simplifies privacy compliance. Using a small set of schema annotations, K9db infers storage organization, generates procedures for data retrieval and deletion, and reports compliance errors if an application risks violating the GDPR. Our K9db prototype successfully expresses the data sharing semantics of real web applications, and guides developers to getting privacy compliance right. K9db also matches or exceeds the performance of existing storage systems, at the cost of a modest increase in state size. 
    more » « less
  2. ; ; ; ; ; ; (, Proceedings of the Fifteenth Symposium on Usable Privacy and Security)
    Security designs that presume enacting secure behaviors to be beneficial in all circumstances discount the impact of response cost on users’ lives and assume that all data is equally worth protecting. However, this has the effect of reducing user autonomy by diminishing the role personal values and priorities play in the decision-making process. In this study, we demonstrate an alternative approach that emphasizes users’ comprehension over compliance, with the goal of helping users to make more informed decisions regarding their own security. To this end, we conducted a three-phase redesign of the warning notifications surrounding the authentication ceremony in Signal. Our results show how improved comprehension can be achieved while still promoting favorable privacy outcomes among users. Our experience reaffirms existing arguments that users should be empowered to make personal trade-offs between perceived risk and response cost. We also find that system trust is a major factor in users’ interpretation of system determinations of risk, and that properly communicating risk requires an understanding of user perceptions of the larger security ecosystem in whole. 
    more » « less
  3. ; ; ; (, Ohio Journal of Public Health)
    Background: The health belief model suggests that individuals' beliefs affect behaviors associated with health. This study examined whether Ohioans' pre-existing medical health diagnoses affected their belief about personal health risk and their compliance with social distancing during the coronavirus disease 2019 (COVID-19) pandemic. Prior research examining physical and mental diagnoses and social distancing compliance is nearly nonexistent. We examined whether physical and mental health diagnoses influenced individuals' beliefs that their health is at risk and their adherence with social distancing guidelines. Methods: The study used longitudinal cohort data from the Toledo Adolescent Relationships Study (TARS) (n = 790), which surveyed Ohioans prior to and during the COVID-19 pandemic. Dependent variables included belief that an individual's own health was at risk and social distancing compliance. Independent variables included physical and mental health diagnoses, pandemic-related factors (fear of COVID-19, political beliefs about the pandemic, friends social distance, family social distance, COVID-19 exposure), and sociodemographic variables (age, gender, race/ethnicity, educational level). Results: Individuals who had a pre-existing physical health diagnosis were more likely to believe that their personal health was at risk during the pandemic but were not more likely to comply with social distancing guidelines. In contrast, individuals who had a pre-existing mental health diagnosis were more compliant with social distancing guidelines but were not more likely to believe their personal health was at risk. Individuals who expressed greater fear of COVID-19 believed their health is more at risk than those who expressed lower levels of fear. Conclusion: Health considerations are important to account for in assessments of responses to the pandemic, beliefs about personal health risk, and social distancing behavior. Additional research is needed to understand the divergence in the findings regarding physical health, beliefs about personal health risk, and social distancing compliance. Further, research is needed to understand how mental health issues impact decision-making related to social distancing compliance. 
    more » « less
  4. ; ; ; (, ACM)
    While interpretability methods identify a model’s learned concepts, they overlook the relationships between concepts that make up its abstractions and inform its ability to generalize to new data. To assess whether models’ have learned human-aligned abstractions, we introduce abstraction alignment, a methodology to compare model behavior against formal human knowledge. Abstraction alignment externalizes domain-specific human knowledge as an abstraction graph, a set of pertinent concepts spanning levels of abstraction. Using the abstraction graph as a ground truth, abstraction alignment measures the alignment of a model’s behavior by determining how much of its uncertainty is accounted for by the human abstractions. By aggregating abstraction alignment across entire datasets, users can test alignment hypotheses, such as which human concepts the model has learned and where misalignments recur. In evaluations with experts, abstraction alignment differentiates seemingly similar errors, improves the verbosity of existing model-quality metrics, and uncovers improvements to current human abstractions. 
    more » « less
  5. ; (, American Society of Mechanical Engineers)
    Abstract All complex designs emerge as the result of the decisions made by the design engineers. It can be shown that the designs are best when the preferences guiding the engineering decisions align with the overall system or corporate preference. But we know that all people make decisions based on their own personal preferences, which are unlikely to align well with the corporate preference. This research addresses the question, what mechanisms can be used to better align engineers’ decisions to the system or corporate preference, but particularly such that major catastrophes might be prevented? Inspiration for this work comes from a number of very substantial losses that likely would have been prevented by the systems engineers had they the incentive to come forth with knowledge they certainly had. Examples include Boeing’s experience with the 737MAX, which appears to be costing Boeing more than $100 billion, and Volkswagen’s experience with the falsified emission testing of their diesel-engine vehicles, which resulted in over 31 billion euros in fines, penalties and other direct costs. We believe that incentive mechanisms could have been in place that would have prevented these very significant losses. Thus, we believe that there exist potential mechanisms that would benefit both the corporation and the engineers. We further believe that these mechanisms would not only improve corporate profitability but they have the potential to save many lives as well. 
    more » « less
  • Citation Formats
  • MLA
  • APA
  • Chicago
  • BibTeX
  • Save / Share this Record
  • Send to Email