You are here
7001 - PRIPARE Smart City Strategy
To ensure that ICT solutions integrated in EIP smart cities will be compliant with future privacy regulation.
Integrated Infrastructures and Processess across Energy, ICT, and Transport
Citizen Focus, Integrated Planning, Policy, Regulation and Management, Standards, Baselines and Performance Indicators and Metrics
The objective of the commitment is to ensure that ICT solutions integrated in EIP smart cities will be compliant with future privacy regulation. PRIPARE will bring the following:
• a privacy and security-by-design software and systems engineering methodology, using the combined expertise of the research community and taking into account multiple viewpoints (advocacy, legal, engineering, business). This methodology will be available by the end of 2014. Liaison is currently on-going so that it becomes a standard (OASIS and ISO).
• best practices material (guidelines, instructions, patterns, success stories) for the development and implementation of products and services of ICT-based systems and use-cases. Concertation within the EIP is proposed to create focus on smart cities applications examples.
• training workshops and practical support in applying PRIPARE best practices in their environment.
• provide educational material on approaches for risk management of privacy and create awareness on the need for risk management culture among users.
• gaps and provide recommendations on privacy and security-by-design practices, support of unhindered usage of Internet and on the creation of a risk management culture. A research agenda will be proposed.
Two levels of contributions are proposed:
First a specific focus on action 1 (environmental open data hub). The goal of this action is to “demonstrate the added value of releasing dynamic Open Data for environmental applications. It integrates the Internet of Things, and supports future smart grids and smart cities visions, models and services”. The description of the action explicitly mentions the need to address security and privacy issues: “it will be necessary to define the appropriate level of details when releasing dynamic data, to anticipate and prevent unwanted applications”. The commitment will have an influence on the following deliverables
• i: Review of existing data platform (with the viewpoint of data protection compliance)
• iii: Review of barriers to make data available – applying data protection impact assessment, applying risk analysis
• iv: Training and support for a privacy-by-design specification
• other deliverables: privacy impact assessment
Secondly global support to the EIP on information and training on the integration of data protection in ICT solutions across the EIP priorities (the term privacy is mentioned 13 times in the OIP). Provision of recommendations for data protection impact assessment template
Action 1 (environmental open data hub) clearly state the need to address security and privacy issues: “it will be necessary to define the appropriate level of details when releasing dynamic data, to anticipate and prevent unwanted applications”.
Inclusiveness and Partnership
The PRIPARE consortium is based
(1) on the PRIPARE support action which unites actors to contribute to a global integration of privacy concern in ICT solutions, and include relevant stakeholders in the data protection area. As a FP7 support action it also reaches a wider community (through conferences, such as CPDP (www.cpdpconferences.org/), the annual privacy forum (privacyforum.eu) or the CSP forum events (www.cspforum.eu/). PRIPARE also liaises with ENISA (http://www.enisa.europa.eu/) and is involved in the NIS platform (https://resilience.enisa.europa.eu/nis-platform)
(2) includes additional partners with a vested interest in ICT information systems for smart cities
Is the commitment potentially open to additional partners and if so, in which priority area (please tick the relevant options)?
- Sustainable Urban Mobility
- Sustainable Districts and Built Environment
- Integrated Infrastructures and Processes across Energy, ICT, and Transport
- Citizen Focus
- Policy and Regulation
- Integrated Planning and Management
- Open Data Governance
(i) since PRIPARE covers the privacy transversal issue. Its coverage for the whole of Europe
(ii) The commitment is based on the PRIPARE support action calendar
Q4 2014: specification of the privacy by design methodology, associated best practices, preparation of training and education material.
Q1 2015: identification of research gaps
Q2 2015: training
Q3 and Q4 2015 : supporting EIP Smart city action 1 design and development phases
(iii) Indicators for the progress of the commitment are the following
Availability of the methodology for privacy by design, Adoption stage for standardization.
Availability of training material
Resources for the commitment are mainly provided by resources associated with the PRIPARE support action.
Results expected in
- 2014 Privacy by design methodology Best practices Training and education material.
- 2015 Example applications in action 1 and elsewhere compliant at the privacy level
- 2016 and beyond Growing awareness and wider use of a standardised privacy-by-design methodology