Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Trust in DataTrust in Data
How Will The GDPR Influence Blockchain Applications
And Vice Versa?
Trust in Data
1. GDPR
2. Blockchain & GDPR
3. Solutions for BigchainDB & IPDB.Foundation
4. blockchain Privacy Impact Asse...
Trust in Data
Trust in Data
Trust in Data
History of Data Protection in the EU
• Data Protection Directive 95/46/EC + Domestic data
protection laws in...
Trust in Data
3 Reasons to care about GDPR
• As of 25 May 2018 it is not just about fines but also
about reputation
• It i...
Trust in Data
Abbreviations/ Key Actors
• CIPL – Centre for Information policy leadership
• Art. 29 WP – Article 29 Workin...
Trust in Data
Key Changes with GDPR
• Establishment of a harmonised European data
protection law regime for PII
• Right to...
Trust in Data
Trust in Data
Trust in Data
It is essential that data protection experts begin to examine
the concepts behind blockchain technology and ...
Trust in Data
Key Concerns
• Data Controller vs. Data Subject vs. Data Processor
• Accountability for dApps
• Right to be ...
Trust in Data
Key Benefits
• Move away from data silos
• Auditability for accountability for Data exchange
platforms for V...
Trust in Data
Janrain CIAM
Trust in Data
Possible Architecture
BigchainDB
Federation
Database
Cluster
ALICE
BOB
Trust in Data
Possible Architecture
BigchainDB
Federation
Database
Cluster
ALICE
BOB
Access Control Token
Keep Identity
Trust in Data
A Decentralized Cloud Stack is the Future
Centralized
Fully
DecentralizedDecentralized
Partly
Trust in Data
bPIA – Strategies and Tactics
• Ask the right questions and prepare yourself!
• At the right stage hire a la...
Trust in Data
I'd like all blockchain designers to be conscious and
cognizant of human rights, data protection and
privacy...
Trust in Data
I am also concerned that blockchain is a surveillance
machine and will result in less privacy, not more. I h...
Upcoming SlideShare
Loading in …5
×

Personal data and the blockchain – how will the GDPR influence blockchain applications and vice versa? - BigchainDB & IPDB Meetup #6 - June 07, 2017

2,879 views

Published on

Simon Schwerin from BigchainDB talkst about privacy and blockchain:
There are many blockchain applications in the field of identity, IP, finance and energy that are working with personal data. As of May, 28 2018 the new EU GDPR will be implemented, with the aim to strengthen the human rights of individuals, by increasing protection and a feel of ownership of their personal data. It is also supposed to be designed to be technologically neutral and adaptable to processing personal data in different contexts, structures and manners. With regards to blockchain this leaves many questions open, to name a few:

Who will be the data controller in decentralized multi-node systems? – Is there an Accountability Gap? Difference of Private vs. Public set-ups?

Privacy by Design/Default and blockchain core features – Implementation or Clash of Principles? What about the right to be forgotten?

How could a blockchain privacy impact assessment (bPIA) look like to increase the chance of compliance with GDPR next year?

Published in: Technology

Personal data and the blockchain – how will the GDPR influence blockchain applications and vice versa? - BigchainDB & IPDB Meetup #6 - June 07, 2017

  1. 1. Trust in DataTrust in Data How Will The GDPR Influence Blockchain Applications And Vice Versa?
  2. 2. Trust in Data 1. GDPR 2. Blockchain & GDPR 3. Solutions for BigchainDB & IPDB.Foundation 4. blockchain Privacy Impact Assessement (bPIA) 5. Discussion
  3. 3. Trust in Data
  4. 4. Trust in Data
  5. 5. Trust in Data History of Data Protection in the EU • Data Protection Directive 95/46/EC + Domestic data protection laws in each member state • e-Privacy Directive 2002/58/EC for electronic communications • EU-US Privacy Shield 2016 • DSM – Digital Single Market Strategy 2017
  6. 6. Trust in Data 3 Reasons to care about GDPR • As of 25 May 2018 it is not just about fines but also about reputation • It is the toughest piece of privacy regulation world wide • It will change the way you do business, your current processes might become illegal
  7. 7. Trust in Data Abbreviations/ Key Actors • CIPL – Centre for Information policy leadership • Art. 29 WP – Article 29 Working Party • DPA – Data protection authority • EDPS – European data protection supervisor • DPO – Data protection officer • PII – Personally identifiable information
  8. 8. Trust in Data Key Changes with GDPR • Establishment of a harmonised European data protection law regime for PII • Right to be Forgotten (Art. 17) • Consent (Art. 6) • Data Minimisation (Art. 5) • Data protection by Design (Art. 25) • 72 hour data breach notification
  9. 9. Trust in Data
  10. 10. Trust in Data
  11. 11. Trust in Data It is essential that data protection experts begin to examine the concepts behind blockchain technology and how it is implemented in order to better understand how data protection principles can be applied to it. An integral part of this process should be the development of a privacy- friendly blockchain technology, based on the principles of privacy by design. – EDPS annual report “
  12. 12. Trust in Data Key Concerns • Data Controller vs. Data Subject vs. Data Processor • Accountability for dApps • Right to be Forgotten • Public vs. Private setups • Automated processing • Purpose limitation
  13. 13. Trust in Data Key Benefits • Move away from data silos • Auditability for accountability for Data exchange platforms for Value Transfer • Moving to decentralized point-service providers • Lets get crazy: instead of Central Bank a Decentral World Bank with governance structures to manage KYC
  14. 14. Trust in Data Janrain CIAM
  15. 15. Trust in Data Possible Architecture BigchainDB Federation Database Cluster ALICE BOB
  16. 16. Trust in Data Possible Architecture BigchainDB Federation Database Cluster ALICE BOB Access Control Token Keep Identity
  17. 17. Trust in Data A Decentralized Cloud Stack is the Future Centralized Fully DecentralizedDecentralized Partly
  18. 18. Trust in Data bPIA – Strategies and Tactics • Ask the right questions and prepare yourself! • At the right stage hire a lawyer for your contracts!
  19. 19. Trust in Data I'd like all blockchain designers to be conscious and cognizant of human rights, data protection and privacy as well as the need to consider how technology generally can protect the privacy of the individual without impeding technological progress. “
  20. 20. Trust in Data I am also concerned that blockchain is a surveillance machine and will result in less privacy, not more. I hope regulators continue to do their job and don’t bow to a technologically determined future. “

×