1. EU General Data Protection Regulation (GDPR). Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), OJ 2016 L 119

2. Guarda P, Zannone N (2009) Towards the development of privacy-aware systems. Inf Softw Technol 51(2):337–350

3. European Commission (2015) Special Eurobarometer 431: Data protection. http://ec.europa.eu/commfrontoffice/publicopinion/archives/ebs/ebs_431_en.pdf . Accessed 09 Jan 2019

4. Dijkman RM, Dumas M, Ouyang C (2007) Formal semantics and analysis of BPMN process models using Petri nets. Queensland University of Technology, Tech. Rep

5. Awad A, Decker G, Weske M (2008) Efficient compliance checking using BPMN-Q and temporal logic. In: International conference on business process management. Springer, pp 326–341