H6.3.1 - Requirements for privacy-enhancing Service-oriented architectures
Sebastian Meissner, Jan Schallaböck, Laurent Bussard, Uli Pinsdorf, Stuart Short, Sascha Koschinat
Service-oriented architectures expose new chances and challenges for privacy and data protection. The potentially increased distribution of personal information across multiple domains make subject access requests difficult to handle. Which service did process what data? Whom to address for liability issues? At the same time, the service orientation offers a new approach for the granularity of data processing, allowing clearer responsibilities and better auditing. This deliverable develops a comprehensive set of requirements for Service-oriented architectures. If applied in the construction of Service-oriented architectures, legal compliance with privacy legislation should be facilitated. Even more, they offer additional support for privacy enhancing Service-oriented architectures.