Implementing ISO/IEC TS 27560:2023 Consent Records and Receipts for GDPR and DGA

arXiv:2405.04528v1 Announce Type: new
Abstract: The ISO/IEC TS 27560:2023 Privacy technologies - Consent record information structure provides guidance for the creation and maintenance of records regarding consent as machine-readable information. It also provides guidance on the use of this information to exchange such records between entities in the form of 'receipts'. In this article, we compare requirements regarding consent between ISO/IEC TS 27560:2023, ISO/IEC 29184:2020 Privacy Notices, and the EU's General Data Protection Regulation (GDPR) to show how these standards …

arxiv consent cs.cr dga entities exchange gdpr guidance iec information iso machine maintenance privacy record records structure technologies