A blockchain is a distributed ledger forming a distributed consensus on a history of transactions. It is the underlying technology for the Bitcoin cryptocurrency, but there are many applications beyond the financial sector. With built-in security and removal of the need for third party trust, blockchain has started to see some use within contract applications among other things. In this paper, we present the design and implementation of a permissioned-based blockchain third party consent management system, whose policy can be decided by a government agency. We have constructed a proof of concept implementation using Hyperledger Fabric to provide a service that allows end-users to control and consent to who manages their private information. We believe our solution meets the guiding principles of EU General Data Protection Regulation or GDPR. While our performance and usability evaluation are limited, our solution design and its implementation meet the 7 foundational principles of privacy by design.
[1]
Philippe Ravaud,et al.
Blockchain protocols in clinical trials: Transparency and traceability of consent
,
2017,
F1000Research.
[2]
Philippe Ravaud,et al.
Blockchain technology for improving clinical research quality
,
2017,
Trials.
[3]
Satoshi Nakamoto.
Bitcoin : A Peer-to-Peer Electronic Cash System
,
2009
.
[4]
Christian Cachin,et al.
Architecture of the Hyperledger Blockchain Fabric
,
2016
.
[5]
Katharine Gammon,et al.
Experimenting with blockchain: Can one technology boost both data integrity and patients' pocketbooks?
,
2018,
Nature Medicine.
[6]
Philippe Genestier,et al.
Blockchain for Consent Management in the eHealth Environment: A Nugget for Privacy and Security Challenges
,
2017
.