TechGDPR

GDPR, Blockchain, and the Principles of Privacy by Design

Monday December 3rd, 2018 by Silvan Jongerius

Since the introduction of the GDPR we have dealt with many aspects of the regulation. What has emerged as one of the most interesting areas for me to work on is Privacy by Design (or “Data Protection by Design and by Default,” in the language of the GDPR). The simple requirement to implement privacy from the very beginning of the development of a product finds us in interesting situations where we are asked to consult companies in their product design process. Our team has experience in product development, both from the business and technical side, and is therefore perfectly placed to assist as privacy experts in such a process, especially if it is about blockchain or other revolutionary technologies.

The shift from quick fixes to caring about privacy

It is a pleasure to work with the continuously growing pool of companies who see privacy and data protection as a real priority. Some companies are even seeking to leverage it as a competitive advantage as customers begin to see the value in data privacy and seek products and services while taking data protection into consideration.

These thoughts became the base for my latest presentation “Privacy by Design for Blockchain”, which I gave at both the DWF Blockchain Meetup in Berlin, “GDPR & Blockchain,” and at the Data Natives Conference 2018, also in Berlin.

Privacy by Design metaphor

In my research for these presentations, I discovered  that much of the work done on Privacy by Design dates back to the mid-1990’s, when Dr. Ann Cavoukian, then Privacy Commissioner of Ontario, Canada developed the Seven Foundational Principles of Privacy by Design. Dr. Cavoukian has been leading great work in this area ever since, currently leading the Privacy by Design Centre of Excellence at Ryerson University.

Blockchain, GDPR and Privacy by Design primer

As I have been investigating how blockchain, GDPR, and the Seven Foundational Principles of Privacy by Design correlate—and could be interpreted as in compliance with Article 25 of the GDPR—I have written a primer on the matter. I plan to develop this document into a more in-depth work in the future, but I thought it would be worth sharing my initial thoughts here. I welcome all comments and suggestions through email, Twitter, or LinkedIn.

Download the 5-page primer to Privacy by Design and GDPR in Blockchain – Silvan Jongerius (PDF).

 

Silvan Jongerius is the CEO of TechGDPR.

Greg McMullen of COALA IP, as well as Abigail Garner of TechGDPR have kindly reviewed this work.

Silvan Jongerius

American Intern Meets the GDPR
December 12th, 2018

The Limits of Blockchain Privacy and the GDPR
October 22nd, 2018

Blocks Ascending: The GDPR Checklist for Any Blockchain Project
September 17th, 2018

What the GDPR's 'Privacy By Design' Really Means for Your Business
August 31st, 2018

California Residents Gain Strongest Data Privacy Rights in US
August 22nd, 2018

Disruptive Startups Must Also Disrupt Common GDPR Assumptions
August 16th, 2018

Your IoT Product is Not as GDPR Compliant as You Think
July 27th, 2018

How Countries are Creating Blockchain Economies
July 18th, 2018

Can Blockchain Rescue our Identity from the Digital Abyss?
July 16th, 2018

GDPR Compliance: It's a Process, Not a Product
July 10th, 2018

Artificial Intelligence (2)
Beyond EU (2)
Big Data (1)
Blockchain (6)
Data Subjects (3)
DPO (2)
IoT (3)
Privacy by Design (2)
Startups (1)
December 2018 (2)
October 2018 (1)
September 2018 (1)
August 2018 (3)
July 2018 (5)
June 2018 (1)
March 2018 (1)

Contact us to find out how we can help you with your GDPR compliance.