OBI-PIA: Ontology-Based method for Interdisciplinary Data Protection Impact Assessment
The project at a glance
About
AI will integrate all sectors, including small and medium enterprises (SMEs), promising automation and efficiency. Yet, AI models pose risks to privacy and security, challenging us to define appropriate requirements, as our preliminary findings in the NCER-funded AI LegaLake project suggest. These findings highlight the importance of data protection impact assessments (DPIA) in SMEs. DPIAs are mandatory from the GDPR that help guide the development and design of privacy-preserving systems. Nevertheless, SMEs may not have the required knowledge and capabilities to produce them.
In this context, the proposed Ontology-Based method for Interdisciplinary Data Protection Impact Assessment (OBI-PIA) aims to offer a lightweight and usable approach for interdisciplinary DPIAs assessment. It leverages ontological domain conceptualization and model-based discussions to bridge computer science, legal studies, and policy on data protection.
Organisation and partners
Interdisciplinary Centre for Security, Reliability and Trust (SnT)
Faculty of Law, Economics and Finance (FDEF)
Institute for Advanced Studies (IAS)
European Commission