Foreword

Introduction

1Scope

2Normative references

3Terms and definitions

3.1Anonymity assessment

3.2Approved security function

3.3Architectural blueprint

3.4Bitcoin

3.5Cryptographic algorithm

3.6Cryptographic key

3.7Certificate

3.8Decentralized application

3.9Distributed ledger

3.10Distributed ledger technology

3.11Entity

3.12Entropy

3.13Ephemeral key

3.14Hashed object

3.15Hash value

3.16Input data

3.17Interoperability

3.18IT System

3.19Key management

3.20Ledger

3.21Off-chain

3.22On-chain

3.23Peer-to-peer

3.24Privacy by Design

3.25Organisational Measures

3.26Pruning

3.27Record

3.28Security function

3.29Technical Measures

3.30Timestamp

3.31Trust

3.32Validation

3.33Validator

4Symbols and abbreviations

5Personal data

5.1Personal data in general

5.2Defining Personal data

5.3Practical consideration about identifiability and identifiers

5.4Identifying personal data in a blockchain context

5.5Requirement of an Anonymity assessment

6GDPR awareness

7Principles of data protection and their risks from the perspective of Privacy by Design

7.1General

7.2Fundamental principles of data protection

7.3Assessing the risk of processing personal data

7.3.1General

7.3.2Traditional risk assessment methodology

7.3.3Risk assessment from the perspective of data protection law

7.4Initial assessment of risks in a blockchain application

8Mitigating the risk of processing and decreasing identifiability through technical measures

8.1General

8.2Technical measures

8.2.1Categories of technical measures of data protection:

8.2.2Techniques to improve data protection or mitigate risk of processing

8.3Architectural blueprint for an IT system processing personal data utilizing a blockchain-based tamper-proof access log

8.3.1General

8.3.2DLT-based tamper-proof access log

8.3.3Decentralized Personal Data Storage

8.3.4Consent Management System

Annex ARecommendations for handling personal data in blockchain applications (normativ)

Annex BGDPR awareness (normativ)

B.1General

B.2Controllership and processors in a BC/DLT-system

B.3Right to Erasure (art. 17 GDPR)

B.4Justifications for immutability

B.5Right to rectification

B.6Data Portability (art. 20 GDPR)

B.7Processing Agreements between Controllers and Processors

B.8Household exemption

B.9Identification requirements for controllers

B.10Personal data vs Privacy enhancing technology (ISO/IEC 27018)

B.11Automated decision making (art. 22 GDPR)

B.12Staff training + obligation (art. 29 and art. 32(4) GDPR)

B.13Data protection impact assessment (art. 35 GDPR)

B.14Documentation + record of processing activities (art. 5(2) GDPR)

B.15Right to information (art. 13, 14 GDPR)

B.16Data minimization (Art. 5 (1) lit. c GDPR)

B.17Data Protection Officer (Art. 37 (1) GDPR)

B.18Privacy by Design & Default

B.19Notification of data breach to authorities and data subjects (art. 33/34 GDPR)

B.20Right of access by the data subject

B.21Right to object (art. 21 GDPR)

B.22Transfer to third countries

Annex CQuestionnaire: Extent of the implementation of data protection principles in a DLT, in particular blockchain solution (normativ)

Annex DSummary of applicable risk assessment methodologies (informativ)

Annex EAdditional Information on Technical Measures (informativ)

Bibliography