WFRF:(Lindskog H.)
Search: WFRF:(Lindskog H.) > On the Evaluation o...
- 49 of 51
- Previous record
- Next record
- To hitlist
On the Evaluation of Privacy Impact Assessment and Privacy Risk Assessment Methodologies : A Systematic Literature Review
-
- Wairimu, Samuel, 1988- (author)
- Karlstads universitet,Institutionen för matematik och datavetenskap (from 2013)
-
- Iwaya, Leonardo H (author)
- Karlstads universitet,Institutionen för matematik och datavetenskap (from 2013),Privacy and Security (PriSec) Research Group
-
- Fritsch, Lothar, 1970- (author)
- Karlstads universitet,Institutionen för matematik och datavetenskap (from 2013),Oslo Metropolitan University, Norway,Privacy and Security (PriSec) Research Group
- show more...
- show less...
- (creator_code:org_t)
- IEEE, 2024
- 2024
- English.
- In: IEEE Access. - : IEEE. - 2169-3536. ; 12, s. 19625-19650
- Research review (peer-reviewed)
Abstract
Subject headings
Close
- Assessing privacy risks and incorporating privacy measures from the onset requires a comprehensive understanding of potential impacts on data subjects. Privacy Impact Assessments (PIAs) offer a systematic methodology for such purposes, which are closely related to Data Protection Impact Assessments (DPIAs), particularly outlined in Article 35 of the General Data Protection Regulation (GDPR). The core of a PIA is a Privacy Risk Assessment (PRA). PRAs can be integrated as part of full-fledged PIAs or independently developed to support PIA processes. Although these methodologies have been identified as essential enablers of privacy by design, their effectiveness has been criticized because of the lack of evidence of their rigorous and systematic evaluation. Hence, we conducted a Systematic Literature Review (SLR) to identify published PIA and PRA methodologies and assess how and to what extent they have been scientifically validated or evaluated. We found that these methodologies are rarely evaluated for their performance in practice, and most of them have only been validated in limited studies. Most validation evidence is found with PRA methodologies. Of the evaluated methodologies, PIAs were the most evaluated, where case studies were the predominant evaluation method. These evaluated methodologies can be easily transferred to an industrial setting or used by practitioners, as they provide evidence of their use in practice. In addition, the findings in this study can be used to inform researchers of the current state-of-the-art, and practitioners can understand the benefits and current limitations of the methodologies and adopt evidence-based practices.
Subject headings
- NATURVETENSKAP -- Data- och informationsvetenskap (hsv//swe)
- NATURAL SCIENCES -- Computer and Information Sciences (hsv//eng)
Keyword
- Privacy impact assessment
- data protection impact assessment
- general data protection regulation
- privacy by design
- privacy
- review
- threat modeling
- privacy risks
- validity
- maturity.
- Computer Science
- Datavetenskap
Publication and Content Type
- ref (subject category)
- for (subject category)
- 49 of 51
- Previous record
- Next record
- To hitlist
Find more in SwePub
- By the author/editor
- Wairimu, Samuel, ...
- Iwaya, Leonardo ...
- Fritsch, Lothar, ...
- Lindskog, Stefan ...
- About the subject
-
- NATURAL SCIENCES
- NATURAL SCIENCES
- and Computer and Inf ...
- Articles in the publication
- IEEE Access
- By the university
- Karlstad University
Search outside SwePub
- Extend your search to:
- Google Book Search
- Google Scholar
Kungliga biblioteket hanterar dina personuppgifter i enlighet med EU:s dataskyddsförordning (2018), GDPR. Läs mer om hur det funkar här.
Så här hanterar KB dina uppgifter vid användning av denna tjänst.
- Copyright © LIBRIS - National Library Systems
- LIBRIS.kb.se
