Home // SECURWARE 2018, The Twelfth International Conference on Emerging Security Information, Systems and Technologies // View article

Towards a Protection Profile for User-Centric and Self-Determined Privacy Management in Biometrics

Authors:
Salatiel Ezennaya Gomez
Jana Dittmann
Claus Vielhauer

Keywords: GDPR; privacy; biometric data; sensible data; in- formed consent; transparency.

Abstract:
While new concepts of data analysis bring new oppor- tunities for technological and societal evolution, they also present challenges with respect to privacy. Misconduct on personal data usage, particularly of biometric data, may lead to expose it to identity thieves or unfair practices. It is necessary to define limits to the usage of personal data, involving the user actively in the process of defining and controlling their own data as it is gathered in the EU data regulation (GDPR). It includes the right for the user to be informed about the actual use of the data, as it is called notice and choice. In recent decades, security and privacy design aspects were analysed and incorporated as building blocks for IT systems, and now some aspects are mandatory in standardisation and certification procedures. As a first step towards a Protection Profile in biometrics meeting GDPR requirements, in this paper we propose new privacy enforcement concepts and essential privacy requirements to achieve the goal of designing user-centric and self-determined privacy management in mobile biometrics.

Pages: 37 to 42

Copyright: Copyright (c) IARIA, 2018

Publication date: September 16, 2018

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-661-3

Location: Venice, Italy

Dates: from September 16, 2018 to September 20, 2018