An Analysis of Blockchain and GDPR under the Data Lifecycle Perspective
- PDF / 515,848 Bytes
- 11 Pages / 595.276 x 790.866 pts Page_size
- 3 Downloads / 227 Views
An Analysis of Blockchain and GDPR under the Data Lifecycle Perspective Gislaine Parra Freund 1 & Priscila Basto Fagundes 1
&
Douglas Dyllon Jeronimo de Macedo 1
# Springer Science+Business Media, LLC, part of Springer Nature 2020
Abstract The purpose of this article is to present an analysis of the privacy principles of personal data prescribed in the General Data Protection Regulation and the treatment of data in Blockchain technology in its primary version, guided by the phases of the Data LifeCycle. The Data Life Cycle presents the stages in which the data act in a given process and are related to each other, forming a chain of dependence between them. The General Data Protection Regulation, on the other hand, presents privacy principles that contemplate the necessary treatment for data at all stages of its life cycle. This analysis made it possible to identify the influence that the phases of the Data Lifecycle have on the adequacy of the principles of the General Data Protection Regulation and the treatment of the data performed on the Blockchain technology associated with the phases, presenting an approach to lead the process of adapting the technology to compliance with the legislation. In this context, some data treatment options were presented for the phases that presented gaps, making it possible to conclude that the result of this analysis can be used as a support tool to systematize the process of adapting to the law by organizations that use or intend to adopt Blockchain technology. Keywords Data lifecycle . General data protection regulation . Data privacy . Blockchain
1 Introduction Technological advancement has enabled greater access to data and with this new ethical issues arise to be addressed within the scope of legislation on this subject. This scenario boosted the approval in 2016 of the European Union General Data Protection Regulation (GDPR), a law that regulates the processing of personal data in European Union countries. GDPR provides for the processing of personal data, including in digital media, by a natural person or a legal person under public or private law, with the objective of protecting their fundamental rights of freedom and privacy. According to the law, activities for the processing of personal data must observe the following principles: lawfulness, loyalty and transparency; limitation of purposes; minimization of data; accuracy; limitation of retention; integrity and confidentiality; and responsibility [1]. Given the need for new technologies to meet scenarios increasingly complex arises Blockchain. [2] presents Blockchain * Gislaine Parra Freund [email protected] 1
Department of Information Science (CIN), Federal University of Santa Catarina (UFSC), Florianópolis, Santa Catarina, Brazil
as being a new architecture for the digital context and points out that the technological revolution demands an architectural change in the hierarchies of networks, since the hyperconnected world has a dark side of access that needs to be considered. Prior to the Internet, hiera
Data Loading...
