Sie verwenden einen veralteten Browser, welcher von dieser Website nicht unterstützt wird.
Mit dem Benutzen der Webseite erklären Sie sich der Nutzung von Cookies einverstanden. Weitere Pflichtangaben finden Sie in unserer Datenschutzerklärung. Akzeptieren
Zur Startseite Zur Hauptnavigation Zum Inhalt Zum Kontakt Zur Sitemap
+A-
ENDE
  menu
Institut für Medizinische Statistik, Informatik und Datenwissenschaften
  menu
Homepage IMSID / research / projects / TrustNShare / the way

The Requirement

The development and implementation is consistently oriented towards the privacy-by-design principle.

What does privacy-by-design principle mean?

  • Proactive not reactive, preventive rather than remedial
  • Data protection as standard
  • Privacy integrated in the design
  • Full functionality
  • End-to-end lifecycle protection:
  • Visibility and transparency
  • Respect for user privacy

Privacy protection is a guiding principle throughout the project and is tested and ensured through threat modelling and risk assessments.

The barriers

Data often becomes worthless for data use due to the complete anonymisation or privacy protection of data providers.

This must be prevented.

The approach

TrustNShare is based on "scalable consent".

What does "scalable consent" mean?

Data providers are enabled to finely adjust the permission to use their data and the associated risk to their privacy.

TrustNShare uses algorithmic solutions to guarantee the appropriate data protection guidelines for the data required depending on the purpose of use.

In order to generate a graded consent, the available information about the data user (e.g. privacy policy), their data usage history (e.g. reported privacy violations) and the incentives they offer must be taken into account. A reputation of the data user is created. TrustNShare uses this score to generate a data use permission proposal from the consent.

Often, data users give incentives to encourage willingness to receive data from data providers. Incentives are an influential factor that should not be underestimated. This must be taken into account in the negotiation process for the agreement between data providers and data users. The development and design of incentives within the framework of the data trust model is carried out in a participatory research process (citizen science) together with data providers and data users. In this way, the effectiveness of the incentive mechanisms is ensured and innovative impulses are taken up.