Technical Requirements for Processing PII: A First Draft

26 September 2014

I am today attending the first Internet Privacy Engineering Network (IPEN), where the issue of translating Data Protection principles into requirements has been raised a number of times. While this exercise needs to be repeated for each given service or application, it reminded me that I had drafted a number of generic Technical Requirements for Processing PII. These need to be reviewed and validated, but I hope they offer at least proof that the problem can be made tractable.

Posted by George Danezis
Filed in Uncategorized ·Tags: , , ,
Leave a Comment »