What is it about?

In the Internet of Things (IoT) ecosystem the volume of data generated by devices in the user’s environment is continually increasing and becoming of particular value. In such an environment the average user is bound to face considerable difficulties in understanding the size and scope of his/her collected data. However, the provisions of the European General Data Protection Regulation (GDPR) require data subjects to be able to control their personal data, be informed and consent to its processing in an intelligible manner. This paper proposes ADVOCATE platform, a user-centric solution that allows data subjects to easily manage consents regarding access to their personal data in the IoT ecosystem. The proposed platform also assists Data Controllers to meet GDPR requirements, such as informing data subjects in a transparent and unambiguous manner about the data they will manage, the processing purposes and periods. The integrity of personal data processing consents and the immutable versioning control of them are protected by a blockchain infrastructure. Finally, the paper provides a prototype implementation of the proposed platform that supports the main consents management functionality.

Featured Image

Why is it important?

The ADVOCATE platform provides an interoperable mechanism for data controllers to place data access requests in a user-friendly and unambiguous manner and get the corresponding consents. It also gives data subjects the ability to manage their consents and therefore establish their personal data access policy

Read the Original

This page is a summary of: A Blockchain-Based Platform for Consent Management of Personal Data Processing in the IoT Ecosystem, Security and Communication Networks, October 2019, Hindawi Publishing Corporation,
DOI: 10.1155/2019/1431578.
You can read the full text:

Open access logo


The following have contributed to this page