Affiliation:
1. National Technical University of Athens, Greece
2. SingularLogic S.A., Greece
Abstract
Workflow management systems are used to run day-to-day applications in numerous domains, often including exchange and processing of sensitive data. Their native “leakage-proneness,” being the consequence of their distributed and collaborative nature, calls for sophisticated mechanisms able to guarantee proper enforcement of the necessary privacy protection measures. Motivated by the principles of Privacy by Design and its potential for workflow environments, this chapter investigates the associated issues, challenges, and requirements. With the legal and regulatory provisions regarding privacy in information systems as a baseline, the chapter elaborates on the challenges and derived requirements in the context of workflow environments, taking into account the particular needs and implications of the latter. Further, it highlights important aspects that need to be considered regarding, on the one hand, the incorporation of privacy-enhancing features in the workflow models themselves and, on the other, the evaluation of the latter against privacy provisions.
Reference56 articles.
1. Privacy-Aware Workflow Management
2. Towards a general theory of action and time
3. Leveraging Access Control for Privacy Protection: A Survey;A.Antonakopoulou;Privacy protection measures and technologies in business organizations: aspects and standards,2012
4. Article 29 Data Protection Working Party. (2003). Working Document on E-Government. Retrieved November 30, 2013, from http://ec.europa.eu/justice/policies/privacy/docs/wpdocs/2003/e-government_en.pdf
5. Article 29 Data Protection Working Party. (2007). Working Document on the processing of personal data relating to health in electronic health records (EHR). Retrieved November 30, 2013, from http://ec.europa.eu/justice/policies/privacy/docs/wpdocs/2007/wp131_en.pdf