Publication

Privacy impact assessment in large-scale digital forensic investigations

Bas Seyyar, M. & Geradts, Z. J. M. H., Jun-2020, In : Forensic Science International: Digital Investigation. 33, 9 p., 200906.

Research output: Contribution to journalArticleAcademicpeer-review

APA

Bas Seyyar, M., & Geradts, Z. J. M. H. (2020). Privacy impact assessment in large-scale digital forensic investigations. Forensic Science International: Digital Investigation, 33, [200906]. https://doi.org/10.1016/j.fsidi.2020.200906

Author

Bas Seyyar, Merve ; Geradts, Z.J.M.H. / Privacy impact assessment in large-scale digital forensic investigations. In: Forensic Science International: Digital Investigation. 2020 ; Vol. 33.

Harvard

Bas Seyyar, M & Geradts, ZJMH 2020, 'Privacy impact assessment in large-scale digital forensic investigations', Forensic Science International: Digital Investigation, vol. 33, 200906. https://doi.org/10.1016/j.fsidi.2020.200906

Standard

Privacy impact assessment in large-scale digital forensic investigations. / Bas Seyyar, Merve; Geradts, Z.J.M.H.

In: Forensic Science International: Digital Investigation, Vol. 33, 200906, 06.2020.

Research output: Contribution to journalArticleAcademicpeer-review

Vancouver

Bas Seyyar M, Geradts ZJMH. Privacy impact assessment in large-scale digital forensic investigations. Forensic Science International: Digital Investigation. 2020 Jun;33. 200906. https://doi.org/10.1016/j.fsidi.2020.200906


BibTeX

@article{be024331960546fca10c522ee11f3067,
title = "Privacy impact assessment in large-scale digital forensic investigations",
abstract = "The large increase in the collection of location, communication, health data etc. from seized digital devices like mobile phones, tablets, IoT devices, laptops etc. often poses serious privacy risks. To measure privacy risks, privacy impact assessments (PIA) are substantially useful tools and the Directive EU 2016/80 (Police Directive) requires their use. While much has been said about PIA methods pursuant to the Regulation EU 2016/679 (GDPR), less has been said about PIA methods pursuant to the Police Directive. Yet, little research has been done to explore and measure privacy risks that are specific to law enforcement activities which necessitate the processing of large amounts of data. This study tries to fill this gap by conducting a PIA on a big data forensic platform as a case study. This study also answers the question how a PIA should be carried out for large-scale digital forensic operations and describes the privacy risks, threats we learned from conducting it. Finally, it articulates concrete privacy measures to demonstrate compliance with the Police Directive.",
keywords = "Privacy impact assessment (PIA), Data protection impact assessment (DPIA), Big data forensics, Privacy, Directive EU 2016/80, Police directive, Law enforcement directive, Big data, Digital forensics",
author = "{Bas Seyyar}, Merve and Z.J.M.H. Geradts",
year = "2020",
month = jun,
doi = "10.1016/j.fsidi.2020.200906",
language = "English",
volume = "33",
journal = "Forensic Science International: Digital Investigation",
issn = "2666-2817",
publisher = "ELSEVIER SCI LTD",

}

RIS

TY - JOUR

T1 - Privacy impact assessment in large-scale digital forensic investigations

AU - Bas Seyyar, Merve

AU - Geradts, Z.J.M.H.

PY - 2020/6

Y1 - 2020/6

N2 - The large increase in the collection of location, communication, health data etc. from seized digital devices like mobile phones, tablets, IoT devices, laptops etc. often poses serious privacy risks. To measure privacy risks, privacy impact assessments (PIA) are substantially useful tools and the Directive EU 2016/80 (Police Directive) requires their use. While much has been said about PIA methods pursuant to the Regulation EU 2016/679 (GDPR), less has been said about PIA methods pursuant to the Police Directive. Yet, little research has been done to explore and measure privacy risks that are specific to law enforcement activities which necessitate the processing of large amounts of data. This study tries to fill this gap by conducting a PIA on a big data forensic platform as a case study. This study also answers the question how a PIA should be carried out for large-scale digital forensic operations and describes the privacy risks, threats we learned from conducting it. Finally, it articulates concrete privacy measures to demonstrate compliance with the Police Directive.

AB - The large increase in the collection of location, communication, health data etc. from seized digital devices like mobile phones, tablets, IoT devices, laptops etc. often poses serious privacy risks. To measure privacy risks, privacy impact assessments (PIA) are substantially useful tools and the Directive EU 2016/80 (Police Directive) requires their use. While much has been said about PIA methods pursuant to the Regulation EU 2016/679 (GDPR), less has been said about PIA methods pursuant to the Police Directive. Yet, little research has been done to explore and measure privacy risks that are specific to law enforcement activities which necessitate the processing of large amounts of data. This study tries to fill this gap by conducting a PIA on a big data forensic platform as a case study. This study also answers the question how a PIA should be carried out for large-scale digital forensic operations and describes the privacy risks, threats we learned from conducting it. Finally, it articulates concrete privacy measures to demonstrate compliance with the Police Directive.

KW - Privacy impact assessment (PIA)

KW - Data protection impact assessment (DPIA)

KW - Big data forensics

KW - Privacy

KW - Directive EU 2016/80

KW - Police directive

KW - Law enforcement directive

KW - Big data

KW - Digital forensics

U2 - 10.1016/j.fsidi.2020.200906

DO - 10.1016/j.fsidi.2020.200906

M3 - Article

VL - 33

JO - Forensic Science International: Digital Investigation

JF - Forensic Science International: Digital Investigation

SN - 2666-2817

M1 - 200906

ER -

ID: 120309456