Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Guide for Data Breach #103

Open
coolharsh55 opened this issue Aug 2, 2023 · 2 comments
Open

Guide for Data Breach #103

coolharsh55 opened this issue Aug 2, 2023 · 2 comments
Assignees
@coolharsh55
Labels
docs eu-gdpr guide WIP
Milestone
dpv v2.2

Comments

@coolharsh55
Copy link
Collaborator

coolharsh55 commented Aug 2, 2023
edited
Loading

The GDPR Article 33 and 34 requires keeping records associated with suspicion or occurrence of a data breach and its impacts, including any communications to the data subjects or authorities regarding it. This GUIDE-GDPR-DataBreach will provide guidance to implement machine-readable Data Breach records and notifications using the DPV. The scope of this guide would be to create machine-readable records and notices that can provide the information as required for implementing data breach records, assessments, and notifications according to GDPR requirements. The scope as of now does not include providing tools or libraries for the creation of data breach assessment or notification tools or interfaces or other means to work with this information.

The peer-reviewed article - Towards a Semantic Specification for GDPR Data Breach Reporting authored by DPVCG members Harshvardhan J. Pandit, Paul Ryan, Georg P. Krog, and Rob Brennan is the basis for this work. This will include work conducted in #64 and #100, and the existing draft at https://w3id.org/dpv/guides/data-breach will be updated for new concepts developed in DPV v2.1 and v2.2.
@coolharsh55 coolharsh55 self-assigned this Aug 2, 2023
@coolharsh55 coolharsh55 added this to the DPV v1.1 milestone Aug 2, 2023
@coolharsh55 coolharsh55 mentioned this issue Aug 2, 2023
Closed
@ghurlbot
Copy link

Comment by @coolharsh55 via IRC channel #dpvcg on irc.w3.org

the risk assessment concepts in #104 are likely to be accepted - this work should be modified to build on them.

@ghurlbot
Copy link

Comment by @coolharsh55 via IRC channel #dpvcg on irc.w3.org

the concepts in #104 have been accepted, this guide should be updated by incorporating those

@coolharsh55 coolharsh55 modified the milestones: DPV v1.1, dpv v2.1 Apr 13, 2024
coolharsh55 added a commit that referenced this issue May 19, 2024
@coolharsh55
adds risk, incident, data breach in eu-gdpr
8bf5238 
- adds incident concepts to risk; closes #100
- adds data breach concepts to eu-gdpr; closes #64
- adds data breach guide for gdpr; see #103 (requires further edits)
- fixes profile metadata #141 bug where it was being documented as
  external concept in HTML; adds missing rdf:type for resources
- for Risk Extension: removes Assessment, Methodology, and Management
  concepts. The Management concepts have been moved to 'core' section.
- context-status in DPV: adds NotificationStatus concepts
@coolharsh55 coolharsh55 moved this to In progress in dpv 2.1 planning Jul 16, 2024
@coolharsh55 coolharsh55 modified the milestones: dpv v2.1, dpv 2.2 Nov 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@coolharsh55 coolharsh55

Labels
docs eu-gdpr guide WIP
Projects
None yet
Milestone
dpv v2.2
Development

No branches or pull requests
2 participants
@coolharsh55 @ghurlbot