Advertisement

Personal Information Controller Service (PICS)

  • Marco WincklerEmail author
  • Laurent Goncalves
  • Olivier Nicolas
  • Frédérique Biennier
  • Hind Benfenatki
  • Thierry Despeyroux
  • Nourhène Alaya
  • Alex Deslée
  • Mbaye Fall Diallo
  • Isabelle Collin-Lachaud
  • Gautier Ubersfeld
  • Christophe Cianchi
Conference paper
  • 959 Downloads
Part of the Lecture Notes in Computer Science book series (LNCS, volume 11496)

Abstract

This paper presents a view at glance of the project PICS (which stands for Personal Information Controller Service) that is concerned by personal data protection. More specifically we present a software platform that allows users to control the exchanges between Web-based Personal Information Management Systems (the so-called PIMS that store users’ personal data) and SaaS services (such as e-commerce applications) using a reinforced authentication. The ultimate goal of this platform is to empower users by allowing them to have full control on personal data exchange. Moreover, the platform includes specific components to help users to solve cognitive demanding tasks related to the data protection such as how to properly interpret Terms of Service (ToS) imposed by the SaaS, recall previous users interactions with the SaaS (ex. personal data exchanged with the SaaS and the corresponding term of services), and detect unauthorized use of personal data. The technical solution proposed by PICS is a suitable implementation of the General Data Protection Regulation (GDPR). We present the motivations, challenges and research questions that lead to the technical solution proposed by PICS.

Keywords

Personal data protection Personal information systems GDPR 

References

  1. 1.
    Lazar, J., Stein, M.A.: Disability, Human Rights, and Information Technology, 1st edn. University of Pennsylvania Press, Philadelphia (2017)CrossRefGoogle Scholar
  2. 2.
    Terms of Service - didn’t read. https://tosdr.org/. Accessed 25 Mar 2019
  3. 3.
  4. 4.
    Firmenich, S., Gaits, V., Gordillo, S., Rossi, G., Winckler, M.: Supporting users tasks with personal information management and web forms augmentation. In: Brambilla, M., Tokuda, T., Tolksdorf, R. (eds.) ICWE 2012. LNCS, vol. 7387, pp. 268–282. Springer, Heidelberg (2012).  https://doi.org/10.1007/978-3-642-31753-8_20CrossRefGoogle Scholar
  5. 5.
    Schaub, F., Balebako, R., Durity, A., Cranor, L.: A design space for effective privacy notices. In: SOUPS 2015, pp. 1–17. USENIX Association, Berkeley (2015)Google Scholar
  6. 6.
    Benfenatki, H., Biennier, F., Winckler, M., Goncalves, L., Nicolas, O., Saoud, Z.: Towards a User Centric Personal Data Protection Framework. http://chi-gdpr.webflow.io/. Accessed 25 Mar 2019
  7. 7.
    FIDO Alliance. https://fidoalliance.org/. Accessed 25 Mar 2019

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  • Marco Winckler
    • 1
    Email author
  • Laurent Goncalves
    • 2
  • Olivier Nicolas
    • 2
  • Frédérique Biennier
    • 3
  • Hind Benfenatki
    • 3
  • Thierry Despeyroux
    • 4
  • Nourhène Alaya
    • 4
  • Alex Deslée
    • 5
  • Mbaye Fall Diallo
    • 5
  • Isabelle Collin-Lachaud
    • 5
  • Gautier Ubersfeld
    • 6
  • Christophe Cianchi
    • 7
  1. 1.Université Nice Sophia AntipolisNiceFrance
  2. 2.SofteamToulouseFrance
  3. 3.LIRIS, INSA LyonLyonFrance
  4. 4.InriaLe ChesnayFrance
  5. 5.Université de LilleLilleFrance
  6. 6.Anyware ServiceLabègeFrance
  7. 7.Business Card AssociatesParisFrance

Personalised recommendations