Streamlining Governmental Processes by Putting Citizens in Control of Their Personal Data

Governments typically store large amounts of personal information on their citizens, such as a home address, marital status, and occupation, to offer public services. Because governments consist of various governmental agencies, multiple copies of this data often exist. This raises concerns regarding data consistency, privacy, and access control, especially under recent legal frameworks such as GDPR. To solve these problems, and to give citizens true control over their data, we explore an approach using the decentralised Solid ecosystem, which enables citizens to maintain their data in personal data pods. We have applied this approach to two high-impact use cases, where citizen information is stored in personal data pods, and both public and private organisations are selectively granted access. Our findings indicate that Solid allows reshaping the relationship between citizens, their personal data, and the applications they use in the public and private sector. We strongly believe that the insights from this Flemish Solid Pilot can speed up the process for public administrations and private organisations that want to put the users in control of their data.

[1]  Alex Pentland,et al.  On the Trusted Use of Large-Scale Personal Data , 2012, IEEE Data Eng. Bull..

[2]  Theresa A. Pardo,et al.  Creating Open Government Ecosystems: A Research and Development Agenda , 2012, Future Internet.

[3]  Alex Pentland,et al.  Decentralizing Privacy: Using Blockchain to Protect Personal Data , 2015, 2015 IEEE Security and Privacy Workshops.

[4]  Tim Berners-Lee,et al.  A Demonstration of the Solid Platform for Social Web Applications , 2016, WWW.

[5]  Erik Mannens,et al.  Semantics in the wild: a digital assistant for Flemish citizens , 2018, ICEGOV.

[6]  Christophe Debruyne,et al.  Compliance through Informed Consent: Semantic Based Consent Permission and Data Management Model , 2017, PrivOn@ISWC.

[7]  Edgar A. Whitley,et al.  Informational privacy, consent and the "control" of personal data , 2009, Inf. Secur. Tech. Rep..

[8]  Max Van Kleek,et al.  The Future of Social Is Personal: The Potential of the Personal Data Store , 2014 .

[9]  Liad Wagman,et al.  The Short-Run Effects of GDPR on Technology Venture Investment , 2018 .

[10]  Kim-Kwang Raymond Choo,et al.  Blockchain: A Panacea for Healthcare Cloud-Based Data Security and Privacy? , 2018, IEEE Cloud Computing.

[11]  Corrado Moiso,et al.  My data store: toward user awareness and control on personal data , 2014, UbiComp Adjunct.

[12]  Christian Decker,et al.  Information propagation in the Bitcoin network , 2013, IEEE P2P 2013 Proceedings.

[13]  Helen Nissenbaum,et al.  A Critical Look at Decentralized Personal Data Architectures , 2012, ArXiv.

[14]  Yannis Charalabidis,et al.  Benefits, Adoption Barriers and Myths of Open Data and Open Government , 2012, Inf. Syst. Manag..

[15]  Deborah Estrin,et al.  Personal data vaults: a locus of control for personal data streams , 2010, CoNEXT.

[16]  Marijn Janssen,et al.  Innovation with open data: Essential elements of open data ecosystems , 2014, Inf. Polity.