DataProVe: Fully Automated Conformance Verification Between Data Protection Policies and System Architectures

Abstract Privacy and data protection by design are relevant parts of the General Data Protection Regulation (GDPR), in which businesses organisations encouraged to implement measures at an early stage system phase fulfil requirements. This paper addresses policy architecture propose two variants privacy language description language, respectively, for specifying verifying In addition, we develop a fully automated algorithm based on logic, three types conformance relations (privacy, protection, functional conformance) between specified our languages’ variants. Compared related works, this approach supports more systematic fine-grained analysis privacy, properties system. Our theoretical methods then implemented as software tool called DataProVe its feasibility is demonstrated centralised decentralised approaches COVID-19 contact tracing applications.