Tom Lodge
IoT app development: Supporting data protection by design and default
Lodge, Tom; Crabtree, Andy; Brown, Anthony
Authors
Abstract
In the domestic IoT domain, data is often collected by physical sensors and actuators embedded in the household and used to provide contextually relevant services to end users. Given that this data is often personal, the EU's General Data Protection Regulation can implicate IoT app developers, requiring them to adhere to "data protection by design and default" to ensure safeguards that protect a data subject's rights. Yet the simple-to-use task-oriented development environments that are commonly used to build domestic IoT apps provide little support for developers to engage with data protection measures. In this paper we present an overview of an IoT development environment that has been designed to help developers engage with data protection at app design time. We describe a data tracking feature, which makes all personal flows in an app explicit at development time and which provides the foundation for an additonal set of data protection measures, including personal data disclosure risk assessments, transparency of processing and runtime inspection.
Citation
Lodge, T., Crabtree, A., & Brown, A. (2018, October). IoT app development: Supporting data protection by design and default. Presented at UbiComp/ISWC 2018 - Adjunct Proceedings of the 2018 ACM International Joint Conference on Pervasive and Ubiquitous Computing and Proceedings of the 2018 ACM International Symposium on Wearable Computers, Singapore
| Presentation Conference Type | Edited Proceedings |
|---|---|
| Conference Name | UbiComp/ISWC 2018 - Adjunct Proceedings of the 2018 ACM International Joint Conference on Pervasive and Ubiquitous Computing and Proceedings of the 2018 ACM International Symposium on Wearable Computers |
| Start Date | Oct 8, 2018 |
| End Date | Oct 12, 2018 |
| Acceptance Date | Sep 2, 2018 |
| Publication Date | Oct 8, 2018 |
| Deposit Date | Nov 26, 2018 |
| Publicly Available Date | Nov 27, 2018 |
| Publisher | Association for Computing Machinery (ACM) |
| Peer Reviewed | Peer Reviewed |
| Pages | 901-910 |
| Book Title | UbiComp '18: Proceedings of the 2018 ACM International Joint Conference and 2018 International Symposium on Pervasive and Ubiquitous Computing and Wearable Computers |
| ISBN | 9781450359665 |
| DOI | https://doi.org/10.1145/3267305.3274151 |
| Keywords | Internet of Things, edge computing, Databox, data protection, GDPR, trusted application development, IDE |
| Public URL | https://nottingham-repository.worktribe.com/output/1234975 |
| Publisher URL | https://dl.acm.org/doi/10.1145/3267305.3274151 |
| Contract Date | Nov 26, 2018 |
Files
CLaw-5
(446 Kb)
PDF
You might also like
Experiencing mundane AI futures
(2022)
Presentation / Conference Contribution
The cardboard box study: understanding collaborative data management in the connected home
(2021)
Journal Article
Visions, Values, and Videos: Revisiting Envisionings in Service of UbiComp Design for the Home
(2020)
Presentation / Conference Contribution
Downloadable Citations
About Repository@Nottingham
Administrator e-mail: discovery-access-systems@nottingham.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search