{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,14]],"date-time":"2025-10-14T07:18:00Z","timestamp":1760426280986,"version":"3.40.3"},"publisher-location":"Cham","reference-count":16,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031823480","type":"print"},{"value":"9783031823497","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-82349-7_11","type":"book-chapter","created":{"date-parts":[[2025,4,3]],"date-time":"2025-04-03T05:20:42Z","timestamp":1743657642000},"page":"153-169","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Using Static Code Analysis for\u00a0GDPR Compliance Checks"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-0718-977X","authenticated-orcid":false,"given":"Andreas","family":"M. Binder","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4669-0030","authenticated-orcid":false,"given":"Immanuel","family":"Kunz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,4,2]]},"reference":[{"key":"11_CR1","unstructured":"GDPR checklist for data controllers. https:\/\/gdpr.eu\/checklist\/. Accessed Mar 25 2024"},{"key":"11_CR2","doi-asserted-by":"crossref","unstructured":"Al-Momani, A.A., et al.: Land of the lost: privacy patterns\u2019 forgotten properties: enhancing selection-support for privacy patterns. In: Proceedings of the 36th Annual ACM Symposium on Applied Computing, pp. 1217\u20131225 (2021)","DOI":"10.1145\/3412841.3441996"},{"key":"11_CR3","doi-asserted-by":"crossref","unstructured":"Arzt, S., Huber, S., Rasthofer, S., Bodden, E.: Denial-of-app attack: Inhibiting the installation of android apps on stock phones. In: Proceedings of the ACM Conference on Computer and Communications Security (2014)","DOI":"10.1145\/2666620.2666621"},{"key":"11_CR4","doi-asserted-by":"crossref","unstructured":"Banse, C., Kunz, I., Schneider, A., Weiss, K.: Cloud property graph: connecting cloud security assessments with static code analysis. In: IEEE International Conference on Cloud Computing, CLOUD 2021-Sept, pp. 13\u201319 (2021)","DOI":"10.1109\/CLOUD53861.2021.00014"},{"issue":"1","key":"11_CR5","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/s00766-010-0115-7","volume":"16","author":"M Deng","year":"2011","unstructured":"Deng, M., Wuyts, K., Scandariato, R., Preneel, B., Joosen, W.: A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements. Requirements Eng. 16(1), 3\u201332 (2011)","journal-title":"Requirements Eng."},{"key":"11_CR6","unstructured":"Parliament, E., Council, E.: General data protection regulation: GDPR. Off. J. Europ. Union 119, 1\u201388 (2016)"},{"key":"11_CR7","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-02547-2_4","volume-title":"Tailoring Taint Analysis to GDPR","author":"P Ferrara","year":"2018","unstructured":"Ferrara, P., Olivieri, L., Spoto, F.: Tailoring Taint Analysis to GDPR. Springer International Publishing, Cham (2018)"},{"key":"11_CR8","doi-asserted-by":"crossref","unstructured":"Galvez, R., Gurses, S.: The odyssey: modeling privacy threats in a brave new world. In: IEEE European Symposium on Security and Privacy Workshops (EuroS &PW), pp. 87\u201394 (2018)","DOI":"10.1109\/EuroSPW.2018.00018"},{"key":"11_CR9","doi-asserted-by":"publisher","first-page":"343","DOI":"10.1007\/978-3-030-42504-3_22","volume-title":"Privacy and Identity Management. Data for Better Living: AI and Privacy: 14th IFIP WG 9.2, 9.6\/11.7, 11.6\/SIG 9.2.2 International Summer School, Windisch, Switzerland, August 19\u201323, 2019, Revised Selected Papers","author":"K Hjerppe","year":"2020","unstructured":"Hjerppe, K., Ruohonen, J., Lepp\u00e4nen, V.: Annotation-based static analysis for personal data protection. In: Friedewald, M., \u00d6nen, M., Lievens, E., Krenn, S., Fricker, S. (eds.) Privacy and Identity Management. Data for Better Living: AI and Privacy: 14th IFIP WG 9.2, 9.6\/11.7, 11.6\/SIG 9.2.2 International Summer School, Windisch, Switzerland, August 19\u201323, 2019, Revised Selected Papers, pp. 343\u2013358. Springer International Publishing, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-42504-3_22"},{"key":"11_CR10","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"446","DOI":"10.1007\/978-3-642-55415-5_38","volume-title":"ICT Systems Security and Privacy Protection","author":"J-H Hoepman","year":"2014","unstructured":"Hoepman, J.-H.: Privacy design strategies. In: Cuppens-Boulahia, N., Cuppens, F., Jajodia, S., Abou El Kalam, A., Sans, T. (eds.) SEC 2014. IAICT, vol. 428, pp. 446\u2013459. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-642-55415-5_38"},{"key":"11_CR11","unstructured":"Edward Kost. 10-step checklist: Gdpr compliance guide. https:\/\/www.upguard.com\/blog\/how-to-be-gdpr-compliant. Accessed 25 Mar 2024"},{"issue":"2","key":"11_CR12","doi-asserted-by":"publisher","first-page":"171","DOI":"10.56553\/popets-2023-0046","volume":"2023","author":"I Kunz","year":"2023","unstructured":"Kunz, I., Weiss, K., Schneider, A., Banse, C.: Privacy property graph: towards automated privacy threat modeling via static graph-based analysis. Proc. Priv. Enhancing Technol. 2023(2), 171\u2013187 (2023). https:\/\/doi.org\/10.56553\/popets-2023-0046","journal-title":"Proc. Priv. Enhancing Technol."},{"key":"11_CR13","unstructured":"Prashant, M.: Launching privado open source for privacy compliance and data security. https:\/\/privado.ai\/post\/launching-privado-open-source-for-privacy-compliance-and-data-security. Accessed 19 Apr 2023"},{"key":"11_CR14","unstructured":"Tang, F., \u00d8stvold, B.M.: Using, A.S.P., the Privacy Flow-Graph. MSR4P &S,: Association for Computing Machinery, p. 2022. NY, USA, New York (2022)"},{"key":"11_CR15","doi-asserted-by":"crossref","unstructured":"Wuyts, K., Sion, L., Joosen, W.: Linddun go: A lightweight approach to privacy threat modeling. In: 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS &PW), pp. 302\u2013309. IEEE (2020)","DOI":"10.1109\/EuroSPW51379.2020.00047"},{"key":"11_CR16","doi-asserted-by":"crossref","unstructured":"Yamaguchi, F., Golde, N., Arp, D., Rieck, K.: Modeling and discovering vulnerabilities with code property graphs. In: Proceedings - IEEE Symposium on Security and Privacy, pp. 590\u2013604 (2014)","DOI":"10.1109\/SP.2014.44"}],"container-title":["Lecture Notes in Computer Science","Computer Security. ESORICS 2024 International Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-82349-7_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,3]],"date-time":"2025-04-03T05:20:53Z","timestamp":1743657653000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-82349-7_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031823480","9783031823497"],"references-count":16,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-82349-7_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"2 April 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bydgoszcz","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Poland","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16 September 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 September 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/esorics2024.org","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}