| ID | 1.5.3 |
| Title | Legal requirements Privacy - Key Principles of Data Processing |
| Expert | Serge Gutwirth (VUB) Christoph Schnabel (UOK) |
| Priority | mandatory |
| Description | The following principles are more or less the same in every Member State - Fairness Principle: All data must be fairly and lawfully processed. - All data must be accurate. Otherwise the data subject has the right to ask for a rectification of data relating to him/her. - Data minimization: Data collecting must be limited to a minimum. There may never be more data collected than necessary. - Confidentiality and security: All collected data must be treated confidentially and must be secured against unauthorized access. - Principle of Finality and Purpose Specification: Personal data may only be collected for a specified, explicit and legitimate purpose. It may not be used for any further purposes. - Principle of Proportionality: Data must be adequate, relevant and not excessive in relation to their purpose. The embodiment of these principles in national law of the Memebr States may differ, but the spirit behind all theses principles is always the same: Never collect more data than necessary for the specified purpose and keep the data subject in control of the data as far as possible. |
| Rationale | Relevant to assess the lawfulness of operation of SPICE |
| Type | non-functional |
| Depends on | 1.5.0 - General Legal requirement-completeness and comprehensiveness of regulatory requirement is impossible. |
| Child dependencies | 1.4.1 - User's Privacy rules (Open market) 1.4.3 - Portability of user profile 3.1.1 - Communication Model building and notification of its updates 3.1.3 - User rules 3.1.4 - Terminal Synchronization 4.1.5 - Management and Provision of Service and Situation-dependent User Data 4.2.1 - Discovery and Exchange of Distributed Context Information; subscription and polling 4.2.2 - Gathering, Aggregation and Interpretation from Multiple Distributed Context Sources, derivation of knowledge 4.2.3 - Context Queries based on Semantic Context Schema and QoC 4.2.10 - Access, Storage, Processing and Distribution Rights 6.3.2 - Privacy rules for special cases 7.3.1 - User Policies and Provider Policies 8.1.1 - Restricted and parametrizable access to user profile/ data 8.1.5 - No user location tracking w/o user's explicit consent |
| Environment | |
| Other_info | |
| Category | regulatory |
| Subcategory | Privacy |
| Subcategory2 | |
| Scenario_scene | |
| SPICE_value | |
| Demo | |
| Keywords | privacy;data protection |
| Home |