Minimisation of Incidental Findings, and Residual Risks for Security Compliance:: the SPIRIT Project

Pompeu Casanovas Romeu; Jorge Gonzalez Conejero; Emma Teodoro Martinez; Nicholas Morris; Rick Adderley

Minimisation of Incidental Findings, and Residual Risks for Security Compliance: the SPIRIT Project

Pompeu Casanovas Romeu, Jorge Gonzalez Conejero, Emma Teodoro Martinez, Nicholas Morris, Rick Adderley

Research output: Chapter in Book › Chapter › Research › peer-review

Abstract

This paper introduces the policy for minimisation of incidental findings and residual risks of the SPIRIT Project. SPIRIT is a EU H2020 Security project, aimed at browsing relevant sources, including the socalled "dark web". It proposes a semantically rich sense-making set of tools aimed at detecting identity fraud patterns. It provides "Technologies for prevention, investigation, and mitigation in the context of fight against crime and terrorism" for the use of LEAs in Europe. According to GDPR, some protections must be put in place. We explain how we planned and designed them. Specifically, we turned incidental findings into an incidental risks policy, planned a risk mitigation strategy (ongoing privacy preserving algorithm development), and set a dynamic DPIA.

Original language	English
Title of host publication	CEUR workshop proceedings
Pages	97-110
Number of pages	14
Publication status	Published - 2018

Keywords

Security
EU Project SPIRIT
Privacy
Residual risks
Incidental findings

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

https://ddd.uab.cat/record/243642Licence: CC BY

Cite this

@inbook{6da3e627bb174d4b84920ed955c77d3b,

title = "Minimisation of Incidental Findings, and Residual Risks for Security Compliance:: the SPIRIT Project",

abstract = "This paper introduces the policy for minimisation of incidental findings and residual risks of the SPIRIT Project. SPIRIT is a EU H2020 Security project, aimed at browsing relevant sources, including the socalled {"}dark web{"}. It proposes a semantically rich sense-making set of tools aimed at detecting identity fraud patterns. It provides {"}Technologies for prevention, investigation, and mitigation in the context of fight against crime and terrorism{"} for the use of LEAs in Europe. According to GDPR, some protections must be put in place. We explain how we planned and designed them. Specifically, we turned incidental findings into an incidental risks policy, planned a risk mitigation strategy (ongoing privacy preserving algorithm development), and set a dynamic DPIA.",

keywords = "Security, EU Project SPIRIT, Privacy, Residual risks, Incidental findings",

author = "{Casanovas Romeu}, Pompeu and {Gonzalez Conejero}, Jorge and {Teodoro Martinez}, Emma and Nicholas Morris and Rick Adderley",

note = "This research is funded by SPIRIT. Scalable privacy preserving intelligence analysis for resolving identities. European Commission. Contract 786993. ",

year = "2018",

language = "English",

pages = "97--110",

booktitle = "CEUR workshop proceedings",

}

TY - CHAP

T1 - Minimisation of Incidental Findings, and Residual Risks for Security Compliance:

T2 - the SPIRIT Project

AU - Casanovas Romeu, Pompeu

AU - Gonzalez Conejero, Jorge

AU - Teodoro Martinez, Emma

AU - Morris, Nicholas

AU - Adderley, Rick

N1 - This research is funded by SPIRIT. Scalable privacy preserving intelligence analysis for resolving identities. European Commission. Contract 786993.

PY - 2018

Y1 - 2018

N2 - This paper introduces the policy for minimisation of incidental findings and residual risks of the SPIRIT Project. SPIRIT is a EU H2020 Security project, aimed at browsing relevant sources, including the socalled "dark web". It proposes a semantically rich sense-making set of tools aimed at detecting identity fraud patterns. It provides "Technologies for prevention, investigation, and mitigation in the context of fight against crime and terrorism" for the use of LEAs in Europe. According to GDPR, some protections must be put in place. We explain how we planned and designed them. Specifically, we turned incidental findings into an incidental risks policy, planned a risk mitigation strategy (ongoing privacy preserving algorithm development), and set a dynamic DPIA.

AB - This paper introduces the policy for minimisation of incidental findings and residual risks of the SPIRIT Project. SPIRIT is a EU H2020 Security project, aimed at browsing relevant sources, including the socalled "dark web". It proposes a semantically rich sense-making set of tools aimed at detecting identity fraud patterns. It provides "Technologies for prevention, investigation, and mitigation in the context of fight against crime and terrorism" for the use of LEAs in Europe. According to GDPR, some protections must be put in place. We explain how we planned and designed them. Specifically, we turned incidental findings into an incidental risks policy, planned a risk mitigation strategy (ongoing privacy preserving algorithm development), and set a dynamic DPIA.

KW - Security

KW - EU Project SPIRIT

KW - Privacy

KW - Residual risks

KW - Incidental findings

M3 - Chapter

SP - 97

EP - 110

BT - CEUR workshop proceedings

ER -