Difference between revisions of "Project:Vocabulary/GDPR"
Jump to navigation
Jump to search
Line 14: | Line 14: | ||
* {{P|282}} - "https://company/privacy/contact" - this is necessary where there is no known email address for contacting the data protection officer, only a form. In these cases you probably still need to add {{P|17}} but with a dummy email address (and a comment qualifier making clear it is not a real address). The generated email then has to be manually pasted into the contact form for submission. For example see {{Q|3424}} | * {{P|282}} - "https://company/privacy/contact" - this is necessary where there is no known email address for contacting the data protection officer, only a form. In these cases you probably still need to add {{P|17}} but with a dummy email address (and a comment qualifier making clear it is not a real address). The generated email then has to be manually pasted into the contact form for submission. For example see {{Q|3424}} | ||
* {{P|10}} - the points of data known to be collected/stored by this company. | * {{P|10}} - the points of data known to be collected/stored by this company. | ||
− | ** with qualifier {{Q|1117}} {{Q|29}} | + | ** with qualifier {{Q|1117}} {{Q|29}} or {{Q|1117}} {{Q|29}}. This is especially important where other data points have already been added to the {{P|10}} list from different sources. We should update our GDPR generators to only include the {{P|10}} items from the sources we want to use (which may differ per project. |
− | ** with qualifier {{P|287}} - "Extract from privacy policy which shows why this data point is believed to be stored." Add more than once if a long extract is needed. Take care to remove spaces from end of string or you will get a Malformed text error. | + | ** with qualifier {{P|287}} - "Extract from privacy policy which shows why this data point is believed to be stored." Add more than once if a long extract is needed. Take care to remove spaces from end of string or you will get a `Malformed text` error. |
* {{P|15}} - URL (optional really) | * {{P|15}} - URL (optional really) | ||
* {{P|103}} - Qxxx | * {{P|103}} - Qxxx | ||
(Q: how do we refer to privacy policy? there are a few different ways to do it) | (Q: how do we refer to privacy policy? there are a few different ways to do it) | ||
+ | * The correct one is {{Q|29}} though we have previously used {{Q|3405}} and some usages of this still need to be migrated. {{Q|3667}} and {{Q|173}} are erroneous and should be deleted. | ||
===Data rights snaks=== | ===Data rights snaks=== |
Revision as of 15:12, 10 February 2020
Use cases
The Ontology need to be suitable for data entries and the usages of those data. We need to identify use case and test the ontology against those.
Example
Core snaks
- instance of (P3) - data controller (Q96)
- e-mail address (P17) - "mailto:johnny@example.com"
- with qualifier for (Q1062) - data controller (Q96) - not currently checked but it should be, as there may be a general support email as well as a data protection officer specific email address.
- contact page (P282) - "https://company/privacy/contact" - this is necessary where there is no known email address for contacting the data protection officer, only a form. In these cases you probably still need to add e-mail address (P17) but with a dummy email address (and a comment qualifier making clear it is not a real address). The generated email then has to be manually pasted into the contact form for submission. For example see Apple (Q3424)
- collects (P10) - the points of data known to be collected/stored by this company.
- with qualifier source (Q1117) privacy policy (Q29) or source (Q1117) privacy policy (Q29). This is especially important where other data points have already been added to the collects (P10) list from different sources. We should update our GDPR generators to only include the collects (P10) items from the sources we want to use (which may differ per project.
- with qualifier policy excerpt (P287) - "Extract from privacy policy which shows why this data point is believed to be stored." Add more than once if a long extract is needed. Take care to remove spaces from end of string or you will get a `Malformed text` error.
- official website (P15) - URL (optional really)
- Wikidata item ID (P103) - Qxxx
(Q: how do we refer to privacy policy? there are a few different ways to do it)
- The correct one is privacy policy (Q29) though we have previously used Q3405 and some usages of this still need to be migrated. Q3667 and Q173 are erroneous and should be deleted.
Data rights snaks
Multiple choice between different options
References
PREFIX pdio: <https://wiki.personaldata.io/entity/>
PREFIX pdiot: <https://wiki.personaldata.io/prop/direct/>
PREFIX pdiop: <https://wiki.personaldata.io/prop/>
PREFIX pdiops: <https://wiki.personaldata.io/prop/statement/>
PREFIX pdiopq: <https://wiki.personaldata.io/prop/qualifier/>
SELECT ?item ?itemLabel ?link WHERE {
?item pdiot:P110 pdio:Q3006. #P110 <-concerns Q3006 <-ontology model
OPTIONAL {?item pdiot:P15 ?link.}
SERVICE wikibase:label {
bd:serviceParam wikibase:language "en" .
}
}
LIMIT 100