Team develops blockchain-based method to protect and manage personal data on the internet

Getting into a web site and accepting cookies is a quite common and oft-repeated gesture when navigating the Web. However this small motion, which is usually performed routinely and with out thought, entails safety dangers: By consenting to cookies, you lose management over your delicate data, as you can’t assessment the situations you will have simply accepted.

With a purpose to keep away from this vulnerability, a analysis group from the Universitat Rovira i Virgili has developed an modern atmosphere based mostly on blockchain expertise that enables customers to regulate what occurs to their personal data and what it’s used for always.

The work is published within the journal Laptop Communications.

Accepting cookies offers permission for delicate data to be shared, which places in danger the privateness of customers, who’re unsure how it is going to be used and for what functions. To mitigate these dangers, the European Union proposed the Normal Knowledge Safety Regulation (GDPR), whereby service suppliers must get hold of express consent from information topics to gather and course of their private information.

The response of many internet suppliers to this requirement has been to current customers with a type after they entry a service: the cookie acceptance type. However the legislation doesn’t outline how these suppliers ought to transparently display that they’ve this consent and most customers have no idea what rights they’ve over their private information or have environment friendly strategies to be looking out for what third events do with their information.

The research led by the URV consists of making a private information administration platform based mostly on blockchain technology. It generates smart contracts which might be revealed for all times on the blockchain and can’t be amended; that’s to say, the phrases agreed can’t be modified and the binding nature of the contract can’t be denied.

With a purpose to use this sensible contract, the consumer should set up a program within the browser that intercepts the request for consent and responds in accordance with their preferences.

“Taking this small step makes shopping extra agile and safe and complies with the principle necessities of the European information safety legislation,” says Jordi Castellà, a researcher on the URV’s Division of Laptop Engineering and Arithmetic, who took half within the analysis.

As well as, all of the consents accepted may be managed and managed from a mobile application to maintain monitor of who has them, after they have been granted, what they’re getting used for and the right way to modify the main points at any time.

For internet service suppliers, this atmosphere allows them to display, within the occasion of an audit, that they’ve obtained consent from customers. Info is accessed by a safe entry management system.

This analysis makes the administration of non-public information safer and offers customers extra and higher management over their data.