{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,7,4]],"date-time":"2025-07-04T23:02:31Z","timestamp":1751670151684,"version":"3.40.3"},"publisher-location":"Cham","reference-count":43,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783031073144"},{"type":"electronic","value":"9783031073151"}],"license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2022]]},"DOI":"10.1007\/978-3-031-07315-1_1","type":"book-chapter","created":{"date-parts":[[2022,5,19]],"date-time":"2022-05-19T09:07:03Z","timestamp":1652951223000},"page":"3-22","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":6,"title":["A Generic Data Model for\u00a0Implementing Right of\u00a0Access Requests"],"prefix":"10.1007","author":[{"given":"Malte","family":"Hansen","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Meiko","family":"Jensen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,5,20]]},"reference":[{"doi-asserted-by":"crossref","unstructured":"Alizadeh, F., et al.: GDPR-reality check on the right to access data: claiming and investigating personally identifiable data from companies. In: Proceedings of Mensch Und Computer 2019, pp. 811\u2013814 (2019)","key":"1_CR1","DOI":"10.1145\/3340764.3344913"},{"doi-asserted-by":"publisher","unstructured":"Angulo, J., et al.: Usable transparency with the data track: a tool for visualizing data disclosures. In: Proceedings of the 33rd Annual ACM Conference Extended Abstracts on Human Factors in Computing Systems, Seoul, CHI 2015 Extended Abstracts, Republic of Korea, 18\u201323 April 2015, Begole, B. et al. (ed.), pp. 1803\u20131808. ACM (2015). https:\/\/doi.org\/10.1145\/2702613.2732701","key":"1_CR2","DOI":"10.1145\/2702613.2732701"},{"unstructured":"ARTICLE 29 DATA PROTECTION WORKING PARTY 16\/EN WP 242 rev.01 Guidelines on the right to data portability Adopted on 13 December 2016 As last Revised and adopted on 5 April 2017","key":"1_CR3"},{"issue":"3","key":"1_CR4","first-page":"22","volume":"16","author":"C Barrett","year":"2020","unstructured":"Barrett, C.: Emerging trends from the first year of EU GDPR enforcement. Scitech Lawyer 16(3), 22\u201335 (2020)","journal-title":"Scitech Lawyer"},{"key":"1_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1007\/978-3-662-58387-6_2","volume-title":"Financial Cryptography and Data Security","author":"David Basin","year":"2018","unstructured":"Basin, David, Debois, S\u00f8ren., Hildebrandt, Thomas: On purpose and by necessity: compliance under the GDPR. In: Meiklejohn, Sarah, Sako, Kazue (eds.) FC 2018. LNCS, vol. 10957, pp. 20\u201337. Springer, Heidelberg (2018). https:\/\/doi.org\/10.1007\/978-3-662-58387-6_2"},{"doi-asserted-by":"crossref","unstructured":"Blue, J., Furey, E.: A novel approach for protecting legacy authentication databases in consideration of GDPR. In: 2018 International Symposium on Networks, Computers and Communications (ISNCC), pp. 1\u20136. IEEE (2018)","key":"1_CR6","DOI":"10.1109\/ISNCC.2018.8531022"},{"doi-asserted-by":"crossref","unstructured":"Bozdag, E.: Data portability under GDPR: technical challenges. In: Available at SSRN 3111866 (2018)","key":"1_CR7","DOI":"10.2139\/ssrn.3111866"},{"doi-asserted-by":"crossref","unstructured":"Bray, T., et al.: The javascript object notation (json) data interchange format (2014)","key":"1_CR8","DOI":"10.17487\/rfc7158"},{"doi-asserted-by":"crossref","unstructured":"Braz, C., Robert, J.M.: Security and usability: the case of the user authentication methods. In: Proceedings of the 18th Conference on l\u2019Interaction Homme-Machine, pp. 199\u2013203 (2006)","key":"1_CR9","DOI":"10.1145\/1132736.1132768"},{"issue":"2","key":"1_CR10","doi-asserted-by":"publisher","first-page":"243","DOI":"10.1007\/s41125-019-00042-z","volume":"4","author":"M Brodin","year":"2019","unstructured":"Brodin, M.: A framework for GDPR compliance for small-and medium-sized enterprises. Eur. J. Secur. Res. 4(2), 243\u2013264 (2019)","journal-title":"Eur. J. Secur. Res."},{"doi-asserted-by":"crossref","unstructured":"Bufalieri, L., et al.: GDPR: when the right to access personal data becomes a threat. In: 2020 IEEE International Conference on Web Services (ICWS), pp. 75\u201383. IEEE (2020)","key":"1_CR11","DOI":"10.1109\/ICWS49710.2020.00017"},{"key":"1_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"367","DOI":"10.1007\/978-3-030-29962-0_18","volume-title":"Computer Security","author":"M Cagnazzo","year":"2019","unstructured":"Cagnazzo, M., Holz, T., Pohlmann, N.: GDPiRated \u2013 stealing personal information on- and offline. In: Sako, K., Schneider, S., Ryan, P.Y.A. (eds.) ESORICS 2019. LNCS, vol. 11736, pp. 367\u2013386. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-29962-0_18"},{"doi-asserted-by":"crossref","unstructured":"Callas, J., et al.: Open PGP message format. Technical Report, RFC 2440, November 1998","key":"1_CR13","DOI":"10.17487\/rfc2440"},{"issue":"2","key":"1_CR14","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1016\/j.clsr.2017.10.003","volume":"34","author":"P De Hert","year":"2018","unstructured":"De Hert, P., et al.: The right to data portability in the GDPR: towards user-centric interoperability of digital services. Comput. Law Secur. Rev. 34(2), 193\u2013203 (2018)","journal-title":"Comput. Law Secur. Rev."},{"unstructured":"Di Martino, M., et al.: Personal information leakage by abusing the {GDPR} right of access. In: Fifteenth Symposium on Usable Privacy and Security ({SOUPS} 2019) (2019)","key":"1_CR15"},{"issue":"1","key":"1_CR16","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1515\/jetl-2017-0001","volume":"8","author":"AD Vanberg","year":"2017","unstructured":"Vanberg, A.D., \u00dcnver, M.B.: The right to data portability in the GDPR and EU competition law: odd couple or dynamic duo? Eur. J. Law Technol. 8(1), 1\u201322 (2017)","journal-title":"Eur. J. Law Technol."},{"unstructured":"Endorsement of GDPR WP29 guidelines by the EDPB. https:\/\/edpb.europa.eu\/news\/news\/2018\/endorsement-gdpr-wp29-guidelines-edpb_de. Accessed 24 Apr 21","key":"1_CR17"},{"unstructured":"European Commission. European data strategy - Making the EU a role model for a society empowered by data (2022). https:\/\/ec.europa.eu\/info\/strategy\/priorities-2019-2024\/Europe-fit-digital-age\/european-data-strategy_en","key":"1_CR18"},{"unstructured":"Ferrara, P., Spoto, F.: Static analysis for GDPR compliance. In: ITASEC (2018)","key":"1_CR19"},{"doi-asserted-by":"crossref","unstructured":"Foster, I.D., et al.: Security by any other name: On the effectiveness of provider based email security. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 450\u2013464 (2015)","key":"1_CR20","DOI":"10.1145\/2810103.2813607"},{"key":"1_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-319-46963-8_1","volume-title":"Current Trends in Web Engineering","author":"H Gjermundr\u00f8d","year":"2016","unstructured":"Gjermundr\u00f8d, H., Dionysiou, I., Costa, K.: privacyTracker: a privacy-by-design GDPR-compliant framework with verifiable data traceability controls. In: Casteleyn, S., Dolog, P., Pautasso, C. (eds.) ICWE 2016. LNCS, vol. 9881, pp. 3\u201315. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-46963-8_1"},{"issue":"2","key":"1_CR22","first-page":"109","volume":"9","author":"B Greze","year":"2019","unstructured":"Greze, B.: The extra-territorial enforcement of the GDPR: a genuine issue and the quest for alternatives. Int. Data Priv. Law 9(2), 109\u2013128 (2019)","journal-title":"Int. Data Priv. Law"},{"key":"1_CR23","doi-asserted-by":"publisher","first-page":"15961","DOI":"10.1109\/ACCESS.2021.3053130","volume":"9","author":"DS Guam\u00e1n","year":"2021","unstructured":"Guam\u00e1n, D.S., Del Alamo, J.M., Caiza, J.C.: GDPR compliance assessment for cross-border personal data transfers in android apps. IEEE Access 9, 15961\u201315982 (2021)","journal-title":"IEEE Access"},{"unstructured":"Hansen, M.: Exploring a Universal Model for Data Requests per Article 15 of the GDPR. MA thesis. Kiel University of Applied Sciences, Germany (2021)","key":"1_CR24"},{"doi-asserted-by":"crossref","unstructured":"Herkenh\u00f6ner, R., et al.: Towards automated processing of the right of access in inter-organizational web service compositions. In: 2010 6th World Congress on Services, pp. 645\u2013652. IEEE (2010)","key":"1_CR25","DOI":"10.1109\/SERVICES.2010.56"},{"unstructured":"Huth, D.: A pattern catalog for GDPR compliant data protection. In: PoEM Doctoral Consortium, pp. 34\u201340 (2017)","key":"1_CR26"},{"issue":"5","key":"1_CR27","first-page":"95","volume":"7","author":"S Zulkarnain","year":"2013","unstructured":"Zulkarnain, S., Idrus, S., et al.: A review on authentication methods. Aust. J. Basic Appl. Sci. 7(5), 95\u2013107 (2013)","journal-title":"Aust. J. Basic Appl. Sci."},{"doi-asserted-by":"publisher","unstructured":"Karegar, F., Pulls, T., Fischer-H\u00fcbner, S.: Visualizing exports of personal data by exercising the right of data portability in the data track - are people ready for this?\u2019 In: Privacy and Identity Management. Facing up to Next Steps - 11th IFIP WG 9.2, 9.5, 9.6\/11.7, 11.4, 11.6\/SIG 9.2.2 International Summer School, Karlstad, Sweden, August 21-26, 2016, Revised Selected Papers. Lehmann, A., et al. (ed.) vol. 498. IFIP Advances in Information and Communication Technology, pp. 164\u2013181 (2016). https:\/\/doi.org\/10.1007\/978-3-319-55783-0_12","key":"1_CR28","DOI":"10.1007\/978-3-319-55783-0_12"},{"doi-asserted-by":"crossref","unstructured":"Martin, Y.S., Kung, A.: Methods and tools for GDPR compliance through privacy and data protection engineering. In: 2018 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), pp. 108\u2013111. IEEE (2018)","key":"1_CR29","DOI":"10.1109\/EuroSPW.2018.00021"},{"issue":"2","key":"1_CR30","first-page":"1","volume":"3","author":"C Ogriseg","year":"2017","unstructured":"Ogriseg, C.: GDPR and personal data protection in the employment context. Labour Law Issues 3(2), 1\u201324 (2017)","journal-title":"Labour Law Issues"},{"unstructured":"Pandit, H.J., O\u2019Sullivan, D., Lewis, D.: GDPR data interoperability model. In: The 23rd EURAS Annual Standardisation Conference, Dublin, Ireland (2018)","key":"1_CR31"},{"unstructured":"Pavur, J., Knerr, C.: Gdparrrrr: using privacy laws to steal identities. In: arXiv preprint arXiv:1912.00731 (2019)","key":"1_CR32"},{"issue":"9","key":"1_CR33","doi-asserted-by":"publisher","first-page":"60","DOI":"10.1109\/MC.2011.225","volume":"44","author":"S Pearson","year":"2011","unstructured":"Pearson, S., Casassa-Mont, M.: Sticky policies: an approach for managing privacy across multiple parties. Computer 44(9), 60\u201368 (2011)","journal-title":"Computer"},{"doi-asserted-by":"crossref","unstructured":"Powell, A., et al.: Understanding and explaining automated decisions. In: Available at SSRN 3309779 (2019)","key":"1_CR34","DOI":"10.2139\/ssrn.3309779"},{"issue":"3","key":"1_CR35","first-page":"19","volume":"7","author":"W Presthus","year":"2019","unstructured":"Presthus, W., S\u00f8rum, H.: Consumer perspectives on information privacy following the implementation of the GDPR. Int. J. Inf. Syst. Proj. Manage. 7(3), 19\u201334 (2019)","journal-title":"Int. J. Inf. Syst. Proj. Manage."},{"unstructured":"Presthus, W., S\u00f8rum, H., Andersen, L.R.: GDPR compliance in Norwegian Companies. In: Norsk konferanse for organisasjoners bruk at IT, vol. 26, no. 1 (2018)","key":"1_CR36"},{"unstructured":"Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on European data governance (Data Governance Act). COM\/2020\/767 final","key":"1_CR37"},{"doi-asserted-by":"crossref","unstructured":"Quermann, N., Degeling, M.: Data sharing in mobile apps\u2014user privacy expectations in Europe. In: 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), pp. 107\u2013119. IEEE (2020)","key":"1_CR38","DOI":"10.1109\/EuroSPW51379.2020.00024"},{"doi-asserted-by":"crossref","unstructured":"Ramsdell, B., Turner, S.: Secure\/multipurpose internet mail extensions (S\/MIME) version 3.1 message specification. Technical Report, RFC 3851, July 2004","key":"1_CR39","DOI":"10.17487\/rfc3851"},{"unstructured":"REGULATION (EU) 2016\/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation). OJ L 119, 4.5, pp. 1\u201388 (2016)","key":"1_CR40"},{"doi-asserted-by":"crossref","unstructured":"Shafranovich, Y.: Common format and MIME type for comma-separated values (CSV) files (2005)","key":"1_CR41","DOI":"10.17487\/rfc4180"},{"key":"1_CR42","doi-asserted-by":"publisher","first-page":"30","DOI":"10.1016\/j.infsof.2017.09.012","volume":"94","author":"I Vel\u00e1squez","year":"2018","unstructured":"Vel\u00e1squez, I., Caro, A., Rodr\u00edguez, A.: Authentication schemes and methods: a systematic literature review. Inf. Softw. Technol. 94, 30\u201337 (2018)","journal-title":"Inf. Softw. Technol."},{"doi-asserted-by":"crossref","unstructured":"Wachter, S., Mittelstadt, B., Russell, C.: Counterfactual explanations without opening the black box: automated decisions and the GDPR. Harv. JL Tech. 31, 841 (2017)","key":"1_CR43","DOI":"10.2139\/ssrn.3063289"}],"container-title":["Lecture Notes in Computer Science","Privacy Technologies and Policy"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-07315-1_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,25]],"date-time":"2024-09-25T12:37:40Z","timestamp":1727267860000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-07315-1_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"ISBN":["9783031073144","9783031073151"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-07315-1_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2022]]},"assertion":[{"value":"20 May 2022","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"APF","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Annual Privacy Forum","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Warsaw","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Poland","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2022","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 June 2022","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 June 2022","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"10","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"apf2022","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/privacyforum.eu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"38","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"8","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"21% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}