Konferenzbeitrag
Data Protection Impact Assessment in Identity Control Management with a Focus on Biometrics
Volltext URI
Dokumententyp
Text/Conference Paper
Zusatzinformation
Datum
2020
Zeitschriftentitel
ISSN der Zeitschrift
Bandtitel
Quelle
Verlag
Gesellschaft für Informatik e.V.
Zusammenfassung
Privacy issues concerning biometric identification are becoming increasingly relevant due to their
proliferation in various fields, including identity and access control management (IAM). The General
Data Protection Regulation (GDPR) requires the implementation of a data protection impact assessment
for privacy critical systems. In this paper, we analyse the usefulness of two different privacy impact
assessment frameworks in the context of biometric data protection. We use experiences from the
SWAN project that processes four different biometric characteristics for authentication purposes. The
results of this comparison elucidate how useful these frameworks are in identifying sector-specific
privacy risks related to IAM and biometric identification.