Making Business Processes Law Compliant

This paper introduces a problem of law compliance that arises during the requirements engineering (RE) phase of software systems. High-level law prescriptions often have a pervasive impact on business processes, the system they have to support, and consequently on the functionalities of the system itself. However, it is not easy to verify that business processes, which are very detailed and domain-dependent, actually comply with abstract, domain-independent legal prescriptions. We propose the use of RE languages combined in a framework to compare these two levels and make conclusions about compliance.

[1]  Annie I. Antón,et al.  Towards Regulatory Compliance: Extracting Rights and Obligations to Align Requirements with Regulations , 2006, 14th IEEE International Requirements Engineering Conference (RE'06).

[2]  Shazia Wasim Sadiq,et al.  Compliance checking between business processes and business contracts , 2006, 2006 10th IEEE International Enterprise Distributed Object Computing Conference (EDOC'06).

[3]  Eric Yu,et al.  Modeling Strategic Relationships for Process Reengineering , 1995, Social Modeling for Requirements Engineering.

[4]  Eric Dubois,et al.  Using Goal-Oriented Requirements Engineering for Improving the Quality of ISO/IEC 15504 based Compliance Assessment Frameworks , 2008, 2008 16th IEEE International Requirements Engineering Conference.

[5]  Robert Darimont,et al.  Goal-oriented Analysis of Regulations , 2006, ReMo2V.

[6]  Guido Boella,et al.  Substantive and procedural norms in normative multiagent systems , 2008, J. Appl. Log..

[7]  Annie I. Antón,et al.  Developing Production Rule Models to Aid in Acquiring Requirements from Legal Texts , 2009, 2009 17th IEEE International Requirements Engineering Conference.

[8]  Daniel Amyot,et al.  Towards a Framework for Tracking Legal Compliance in Healthcare , 2007, CAiSE.

[9]  John Mylopoulos,et al.  Designing Law-Compliant Software Requirements , 2009, ER.