RFID als Technik des Ubiquitous Computing — Eine Gefahr für die Privatsphäre?

“…These were included in the data collection. The documents contain requirements for RFID-based applications (Müller and Handy 2005), location-based services (Jandt 2008), telephone systems (Hammer et al 1993), electronic signature methods (Pordesch and Roßnagel 1994), mobile commerce applications (Ranke 2004), multimedia assistants (Steidle 2005), software agents (Gitter 2007), and Internet-based elections (Bräunlich et al 2011). As bases for the requirements, the documents under examination identified the Basic Law of the Federal Republic of Germany (Grundgesetz, GG), the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG), the European Data Protection Directive 95/46/EC (Europäische Datenschutzrichtlinie, DSRL), the Code of Civil Procedure (Zivilprozessordnung, ZPO), the Telemedia Act (Telemediengesetz, TMG), the Civil Code (BGB), and the Telecommunications Act (Telekommunikationsgesetz, TKG).…”

“…Ten of the evaluated requirements aim for the avoidance of personal data. Data reduction and data economy mean that the processing of personal data is avoided completely or is minimized wherever possible (Gitter 2007, p. 424;Müller andHandy 2005, p. 1157;Ranke 2004, p. 101 ff. ;Steidle 2005, p. 338 ff.).…”

“…Any personal data should be stored separately from data with other contents (requirement pattern R-S-05). For example, data for specific purposes, such as location and usage related data, are to be kept separately (Jandt 2008, p. 371;Müller andHandy 2005, p. 1158;Steidle 2005, p. 341 f.). If possible, the storage of personal data should be on one medium and under the sole disposition of the user (Jandt 2008, p. 371;Ranke 2004, p. 104;Steidle 2005, p. 338).…”

“…However, this approach is contrary to the common practice in systems development, which is to identify solutions abiding to statutes and regulations only to the extent to avoid the threat of legal consequences. Among others, the approach of legal compatibility was used for deriving requirements for RFID systems (Müller and Handy 2005), Location Based Services (Jandt 2008), and similar further applications (Bräunlich et al 2011;Gitter 2007;Hammer et al 1993;Pordesch and Roßnagel 1994;Ranke 2004;Steidle 2005).…”

Legal Compatibility as a Characteristic of Sociotechnical Systems

“…These were included in the data collection. The documents contain requirements for RFID-based applications (Müller and Handy 2005), location-based services (Jandt 2008), telephone systems (Hammer et al 1993), electronic signature methods (Pordesch and Roßnagel 1994), mobile commerce applications (Ranke 2004), multimedia assistants (Steidle 2005), software agents (Gitter 2007), and Internet-based elections (Bräunlich et al 2011). As bases for the requirements, the documents under examination identified the Basic Law of the Federal Republic of Germany (Grundgesetz, GG), the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG), the European Data Protection Directive 95/46/EC (Europäische Datenschutzrichtlinie, DSRL), the Code of Civil Procedure (Zivilprozessordnung, ZPO), the Telemedia Act (Telemediengesetz, TMG), the Civil Code (BGB), and the Telecommunications Act (Telekommunikationsgesetz, TKG).…”

“…Ten of the evaluated requirements aim for the avoidance of personal data. Data reduction and data economy mean that the processing of personal data is avoided completely or is minimized wherever possible (Gitter 2007, p. 424;Müller andHandy 2005, p. 1157;Ranke 2004, p. 101 ff. ;Steidle 2005, p. 338 ff.).…”

“…Any personal data should be stored separately from data with other contents (requirement pattern R-S-05). For example, data for specific purposes, such as location and usage related data, are to be kept separately (Jandt 2008, p. 371;Müller andHandy 2005, p. 1158;Steidle 2005, p. 341 f.). If possible, the storage of personal data should be on one medium and under the sole disposition of the user (Jandt 2008, p. 371;Ranke 2004, p. 104;Steidle 2005, p. 338).…”

“…However, this approach is contrary to the common practice in systems development, which is to identify solutions abiding to statutes and regulations only to the extent to avoid the threat of legal consequences. Among others, the approach of legal compatibility was used for deriving requirements for RFID systems (Müller and Handy 2005), Location Based Services (Jandt 2008), and similar further applications (Bräunlich et al 2011;Gitter 2007;Hammer et al 1993;Pordesch and Roßnagel 1994;Ranke 2004;Steidle 2005).…”

Legal Compatibility as a Characteristic of Sociotechnical Systems

“…However, this approach is contrary to the common practice in systems development, which is to identify solutions abiding to statutes and regulations only to the extent to avoid the threat of legal consequences. Among others, the approach of legal compatibility was used for deriving requirements for RFID systems (Müller and Handy 2005), Location Based Services (Jandt 2008), and similar further applications (Bräunlich et al 2011;Gitter 2007;Hammer et al 1993;Pordesch and Roßnagel 1994;Ranke 2004;Steidle 2005).…”

Legal Compatibility as a Characteristic of Sociotechnical Systems -- Goals and Standardized Requirements

Datenschutzvorsorge gegenüber den Risiken der RFID-Technologie