Blog

The Privacy Enhancing Technologies or PETs allow to implement the privacy principles, but the same tools are useful to implement the governance policies that guarantee the trust and data sovereignty in a Data Space.

The AIA proposal, whose material scope is AI systems, laid down a concept of transparency that differs from the same term laid down in GDPR, whose material scope is not about systems but processing of personal data. Both transparency terms involve different actors and different information intended...

We have been using electronic money for quite some time, understood as any monetary value stored by electronic means for payment transactions. Electronic banking and electronic payment services are regulated at both European and national level, however, with advances in technology, innovative forms...

The Digital Citizen's Folder (Carpeta Ciudadana) is a personal online space that simplifies the relationship between citizens and Public Administrations, allowing the data subjects, in an agile and simple way, to know the files that are open in the different bodies, their registry entries between...

Privacy Enhancing Technologies (PET) enable data sharing by ensuring data protection principles and will also build trust between different actors when sharing data.   Federated Learning techniques are a category of PET that allow the development of machine learning systems without the need to...

An AI system, or several AI systems, could be means selected by a controller to implement personal data operations of a processing activity. It is key to understand that the final purpose of a processing activity is different from the means selected and performed to implement such processing. Indeed...

In recent years, the use of techniques called “User and Entity Behavior Analytics” (UEBA) has spread wide over. These types of techniques have a multitude of applications that always have something in common: record the behavior of users in the past, model this behavior in the present and, if...

The anonymization is a processing that requires the application of the proactive responsibility principles. This means that the controller must ensure, with a formal analysis, that the anonymized data set is not re-identifiable. However, it must be assumed that there could be a residual probability...