Towards evaluating GDPR compliance in IoT applicationsTowards evaluating GDPR compliance in IoT applications Δημοσίευση σε Συνέδριο Conference Publication 2022-05-122020enThe General Data Protection Regulation (GDPR) was created for regulating how organizations that collect personal data process and protect it. In cases of digital handling of personal data, GDPR compliance must be proven by analyzing the actions that a system applies in order to gather, process and safeguard the data. We advocate that compliance must be considered in the design phase of the system, by analyzing the dependencies between system entities (e.g. personal data, users etc.) and the processes enacted upon them. Then, it is possible to generate a series of data reports that can be assessed by regulators who inspect the system for GDPR compliance. However, there can not be a universal methodology that covers all application domains and systems. To show proof of concept, we apply the methodology to a remote patient monitoring service that runs in the cloud.http://creativecommons.org/licenses/by-nc-nd/4.0/2989–299824th International Conference on Knowledge-Based and Intelligent Information & Engineering SystemsKnowledge-Based and Intelligent Information & Engineering Systems: Proceedings of the 24th International ConferenceKarageorgiou Kaneen_et_al_KES 2020_176_2020.pdfChania [Greece]Library of TUC2022-05-12application/pdf1.4 MBfree Karageorgiou-Kanin Christos Καραγεωργιου-Κανην Χρηστος Petrakis Evripidis Πετρακης Ευριπιδης Elsevier GDPR Data protection IoT Property graph