Technical & Organisational Measures (TOMs)

This document provides additional details and examples for technical and organisational measures in the Data Privacy Vocabulary [[DPV]], and is a companion to the [[DPV]] specification.

Organisational Measures

Organisational Measures, represented by the concept [=OrganisationalMeasure=], are measures that are undertaken at an organisational level i.e. by the human involved within the organisation. They involve aspects such as performing assessments, consultations, establishing governance procedures, providing notices, contracts, policies, record keeping, and other similar activities. Though such activities can utilise technologies to support their implementations, the measure is still primary categorised as being associated with 'organisational activities'. Organisational measure are indicated by using the relation [=hasOrganisationalMeasure=].

dpv:Assessment: The document, plan, or process for assessment or determination towards a purpose e.g. assessment of legality or impact assessments go to full definition
- dpv:ComplianceAssessment: Assessment regarding compliance (e.g. internal policy, regulations) go to full definition
  - dpv:LegalComplianceAssessment: Assessment regarding legal compliance go to full definition
- dpv:ConformanceAssessment: Assessment regarding conformance with standards or norms or guidelines or similar instruments go to full definition
- dpv:DataInteroperabilityAssessment: Measures associated with assessment of data interoperability go to full definition
- dpv:DataQualityAssessment: Measures associated with assessment of data quality go to full definition
- dpv:EffectivenessDeterminationProcedures: Procedures intended to determine effectiveness of other measures go to full definition
- dpv:LegitimateInterestAssessment: Indicates an assessment regarding the use of legitimate interest as a lawful basis by the data controller go to full definition
dpv:Audit: An audit is a systematic examination or evaluation of records, processes, or systems towards a specific objective such as to assess accuracy, compliance, effectiveness, or performance go to full definition
- dpv:InformationAudit: An audit that systematically examines the existence and use of information along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared) go to full definition
  - dpv:PersonalDataAudit: An audit that systematically examines the existence and use of personal data along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared) go to full definition
- dpv:LegalComplianceAudit: An audit that systematically examines the state of legal compliance by reviewing policies and procedures related to obligations and compliance requirements for specific laws and regulations go to full definition
- dpv:SecurityAudit: An audit that systematically examines the existence and use of security risks and measures within information systems, networks, and security policies to identify vulnerabilities, risks, and gaps go to full definition
dpv:CertificationSeal: Certifications, seals, and marks indicating compliance to regulations or practices go to full definition
- dpv:Certification: Certification mechanisms, seals, and marks for the purpose of demonstrating compliance go to full definition
- dpv:Seal: A seal or a mark indicating proof of certification to some certification or standard go to full definition
dpv:Consultation: Consultation is a process of receiving feedback, advice, or opinion from an external agency go to full definition
- dpv:ConsultationWithAuthority: Consultation with an authority or authoritative entity go to full definition
- dpv:ConsultationWithDataSubject: Consultation with data subject(s) or their representative(s) go to full definition
  - dpv:ConsultationWithDataSubjectRepresentative: Consultation with representative of data subject(s) go to full definition
- dpv:ConsultationWithDPO: Consultation with Data Protection Officer(s) go to full definition
dpv:DataGovernance: Measures associated with topics typically considered to be part of 'Data Governance' go to full definition
- dpv:DataInteroperabilityManagement: Measures associated with management of data interoperability go to full definition
  - dpv:DataInteroperabilityAssessment: Measures associated with assessment of data interoperability go to full definition
  - dpv:DataInteroperabilityImprovement: Measures associated with improvement of data interoperability go to full definition
- dpv:DataInventoryManagement: Measures associated with management of data inventory or a data asset list go to full definition
- dpv:DataQualityManagement: Measures associated with management of data quality go to full definition
  - dpv:DataQualityAssessment: Measures associated with assessment of data quality go to full definition
  - dpv:DataQualityImprovement: Measures associated with improvement of data quality go to full definition
- dpv:DataSecurityManagement: Measures associated with management of data security go to full definition
- dpv:MetadataManagement: Measures associated with management of metadata go to full definition
dpv:DigitalLiteracy: Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding digital technologies and their implications go to full definition
- dpv:AILiteracy: Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding AI go to full definition
- dpv:DataLiteracy: Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding data go to full definition
dpv:GovernanceProcedures: Procedures related to governance (e.g. organisation, unit, team, process, system) go to full definition
- dpv:ApprovalProcedure: A procedure or process for determining and managing approvals for activities as part of governance go to full definition
- dpv:AssetManagementProcedures: Procedures related to management of assets go to full definition
- dpv:ComplianceMonitoring: Monitoring of compliance (e.g. internal policy, regulations) go to full definition
- dpv:DisasterRecoveryProcedures: Procedures related to management of disasters and recovery go to full definition
- dpv:IncidentManagementProcedures: Procedures related to management of incidents go to full definition
- dpv:IncidentReportingCommunication: Procedures related to management of incident reporting go to full definition
- dpv:Policy: A guidance document outlining any of: procedures, plans, principles, decisions, intent, or protocols. go to full definition
  - dpv:DataProcessingPolicy: Policy regarding data processing activities go to full definition
    - dpv:DataDeletionPolicy: Policy regarding deletion of data go to full definition
    - dpv:DataErasurePolicy: Policy regarding erasure of data go to full definition
    - dpv:DataJurisdictionPolicy: Policy specifying jurisdictional requirements for data processing go to full definition
    - dpv:DataRestorationPolicy: Policy regarding restoration of data go to full definition
    - dpv:DataReusePolicy: Policy regarding reuse of data i.e. using data for purposes other than its initial purpose go to full definition
    - dpv:DataStoragePolicy: Policy regarding storage of data, including the manner, duration, location, and conditions for storage go to full definition
  - dpv:InformationSecurityPolicy: Policy regarding security of information go to full definition
  - dpv:LoggingPolicy: Policy for logging of information go to full definition
  - dpv:MonitoringPolicy: Policy for monitoring (e.g. progress, performance) go to full definition
  - dpv:RecertificationPolicy: Policy regarding repetition or renewal of existing certification(s) go to full definition
- dpv:ReviewProcedure: A procedure or process that reviews the correctness and validity of other procedures and policies e.g. to ensure continued validity, adequacy for intended purposes, and conformance of processes with findings go to full definition
  - dpv:ReviewImpactAssessment: Procedures to review impact assessments in terms of continued validity, adequacy for intended purposes, and conformance of processes with findings go to full definition
- dpv:StandardsConformance: Purposes associated with activities undertaken to ensure or achieve conformance with standards go to full definition
dpv:GuidelinesPrinciple: Guidelines or Principles regarding processing and operational measures go to full definition
- dpv:CodeOfConduct: A set of rules or procedures outlining the norms and practices for conducting activities go to full definition
- dpv:Guideline: Practices that specify how activities must be conducted go to full definition
- dpv:Principle: A representation of values or norms that must be taken into consideration when conducting activities go to full definition
- dpv:PrivacyByDefault: Practices regarding setting the default configurations of information and services to implement data protection and privacy (synonymous with Data Protection by Default) go to full definition
- dpv:PrivacyByDesign: Practices regarding incorporating data protection and privacy in the design of information and services (synonymous with Data Protection by Design) go to full definition
- dpv:Standard: None go to full definition
  - dpv:DesignStandard: A set of rules or guidelines outlining criterias for design go to full definition
  - dpv:ManagementStandard: None go to full definition
  - dpv:TechnicalStandard: None go to full definition
dpv:Notice: A notice is an artefact for providing information, choices, or controls go to full definition
- dpv:AINotice: A notice providing information regarding the particulars of an AI system such as its intended purpose and proper use go to full definition
- dpv:DataTransferNotice: Notice for the legal entity for the transfer of its data go to full definition
- dpv:PrivacyNotice: Represents a notice or document outlining information regarding privacy go to full definition
  - dpv:ConsentNotice: A Notice for information provision associated with Consent go to full definition
- dpv:SecurityIncidentNotice: A notice providing information about security incident(s) go to full definition
  - dpv:DataBreachNotice: A notice providing information about data breach(es) i.e. unauthorised transfer, access, use, or modification of data go to full definition
dpv:Notification: Notification represents the provision of a notice i.e. notifying go to full definition
- dpv:SecurityIncidentNotification: Notification of information about security incident(s) go to full definition
  - dpv:DataBreachNotification: Notification of information about data breach(es) i.e. unauthorised transfer, access, use, or modification of data go to full definition
dpv:RecordsOfActivities: Records of activities within some context such as maintenance tasks or governance functions go to full definition
- dpv:DataBreachRecord: Record of a data breach incident go to full definition
- dpv:DataProcessingRecord: Record of data processing, whether ex-ante or ex-post go to full definition
  - dpv:ConsentRecord: A Record of Consent or Consent related activities go to full definition
    - dpv:ConsentReceipt: A record of consent or consent related activities that is provided to another entity go to full definition
  - dpv:DataTransferRecord: Record of data transfer activities go to full definition
  - dpv:ROPA: A Record of Processing Activities (ROPA) is a document detailing processing activities go to full definition
- dpv:SecurityIncidentRecord: Record of a security incident go to full definition
dpv:RightsManagement: Methods associated with rights management where 'rights' refer to controlling who can do what with a resource go to full definition
- dpv:DataSubjectRightsManagement: Methods to provide, implement, and exercise data subjects' rights go to full definition
- dpv:IPRManagement: Management of Intellectual Property Rights with a view to identify and safeguard and enforce them go to full definition
- dpv:PermissionManagement: Methods to obtain, provide, modify, and withdraw permissions along with maintaining a record of permissions, retrieving records, and processing changes in permission states go to full definition
  - dpv:ConsentManagement: Methods to obtain, provide, modify, and withdraw consent along with maintaining a record of consent, retrieving records, and processing changes in consent states go to full definition
dpv:Safeguard: A safeguard is a precautionary measure for the protection against or mitigation of negative effects go to full definition
- dpv:RegulatorySandbox: Mechanism used by regulators and businesses for gauging the compatibility of regulations and innovative products, particularly in the context of digitalisation, in a controlled real-world environment with appropriate safeguards in place go to full definition
- dpv:SafeguardForDataTransfer: Represents a safeguard used for data transfer. Can include technical or organisational measures. go to full definition
dpv:SecurityProcedure: Procedures associated with assessing, implementing, and evaluating security go to full definition
- dpv:AuthorisationProcedure: Procedures for determining authorisation through permission or authority go to full definition
  - dpv:CredentialManagement: Management of credentials and their use in authorisations go to full definition
  - dpv:IdentityManagementMethod: Management of identity and identity-based processes go to full definition
- dpv:BackgroundChecks: Procedure where the background of an entity is assessed to identity vulnerabilities and threats due to their current or intended role go to full definition
- dpv:DataSecurityManagement: Measures associated with management of data security go to full definition
- dpv:SecureProcessingEnvironment: A physical or virtual environment supported by organisational means that integrates security and compliance requirements and allows supervising data processing actions go to full definition
- dpv:SecurityRoleProcedures: Procedures related to security roles go to full definition
- dpv:ThirdPartySecurityProcedures: Procedures related to security associated with Third Parties go to full definition
dpv:StaffTraining: Practices and policies regarding training of staff members go to full definition
- dpv:CybersecurityTraining: Training methods related to cybersecurity go to full definition
- dpv:DataProtectionTraining: Training intended to increase knowledge regarding data protection go to full definition
- dpv:EducationalTraining: Training methods that are intended to provide education on topic(s) go to full definition
- dpv:ProfessionalTraining: Training methods that are intended to provide professional knowledge and expertise go to full definition
- dpv:SecurityKnowledgeTraining: Training intended to increase knowledge regarding security go to full definition
dpv:SupportEntityDecisionMaking: Supporting entities, including individuals, in making decisions go to full definition
- dpv:SupportContractNegotiation: Supporting entities, including individuals, with negotiating a contract and its terms and conditions go to full definition
- dpv:SupportExchangeOfViews: Supporting individuals and entities in exchanging views e.g. regarding data processing purposes for their best interests go to full definition
- dpv:SupportInformedConsentDecision: Supporting individuals with making a decision regarding their informed consent go to full definition

To indicate staff are trained in the use of credentials, and that a policy exists regarding this, the use of OrganisationalMeasure concepts can be combined in several ways. Note that the interpretations for how staff training is associated with credentials, or contains training regarding credentials is arbitrary in notation. It is intended to demonstrate how different perspectives can be represented so as to be suitable to the organisation's documentation practices.

# 1: directly associating staff training with credentials used
ex:StaffCredentialsTraining rdf:type dpv:OrganistionalMeasure ;
    skos:broader dpv:StaffTraining .
ex:RBACCredential dpv:hasOrganisationalMeasure ex:StaffCredentialTraining .

# 2: security policy containing staff training and access control
ex:SecurityPolicy rdf:type dpv:OrganisationalMeasure ;
    skos:broader dpv:Policy ;
    dpv:hasOrganisationalMeasure dpv:StaffTraining ;
    dpv:hasTechnicalMeasure dpv:AccessControlMethod .

# 3: indicating staff training contains access control methods
ex:StaffCredentialsTraining rdf:type dpv:OrganistionalMeasure ;
    skos:broader dpv:StaffTraining ;
    dpv:hasTechnicalMeasure ex:RBACCredential .

(META Example ID: E0021; link: source file; contributed by Harshvardhan J. Pandit on 2024-06-10)

Assessments

[=Assessment=] refers to a document, plan, or process for assessment or determination towards a purpose. For example, legal compliance assessment establishes compliance with the law and lawfulness. Similarly, privacy assessments concern privacy, risk assessments concern risks, and impact assessments concern impacts of operations and technologies. To represent such commonly utilised assessments, DPV provides the following concepts:

[=ComplianceAssessment=] and its extended concept [=LegalComplianceAssessment=] for compliance and legal compliance related assessments e.g. with a particular law
[=ConformanceAssessment=] for assessment of conformance e.g. towards a standard or guideline
[=DataInteroperabilityAssessment=] to assess the interoperability of data, such as that required by regulations like [[DGA]]
[=DataQualityAssessment=] for assessment of data quality
[=EffectivenessDeterminationProcedures=] for assessment of the effectiveness of other measures or activities
[=LegitimateInterestAssessment=] to assess the legitimate interests used (as a legal basis) to justify the activity

Assessments which refer to risks and/or impacts, such as risk assessment, privacy impact assessment, data protection impact assessment, and data breach impact assessment are defined in the 'risk' module within DPV due to their role within the risk management processes.

Notices

The concept [=Notice=] represents a 'notice' which provides information and can be used to offer choices and make decisions - such as for privacy and consent. The relation [=hasNotice=] is used to indicate the inclusion or association of a notice within a context.

The contents of a notice can be represented through other DPV concepts, for example a privacy notice can represent specific services and processes along with their purposes, personal data, and involved entities by utilising the relevant concepts and relations for these. Notices can also contain metadata, such as for their creation date, titles and descriptions, versions, and publisher information by utilising a common standard such as [[DCTERMS]].

This example first specifies a privacy notice as a document is being used in the context of a service as represented using a process instance. Then it provides an alternative representation where the contents of a notice are described using DPV.

# Associating a Notice with DPV metadata
ex:Service rdf:type dpv:Process ;
    dpv:hasNotice ex:AcmePrivacyPolicy .
ex:AcmePrivayPolicy rdf:type dpv:PrivacyNotice ;
    dct:title "Acme's Privacy Policy"@en ;
    foaf:page "https://example.com/"^^xsd:anyURI .

# Describing a Notice using DPV metadata
ex:AcmePrivacyPolicy rdf:type dpv:PrivacyNotice ;
    # Approach 1: delegate contents to a PDH instance
    dpv:hasProcess ex:Service ;
    # Approach 2: declare specifics directly
    dpv:hasPurpose dpv:ServiceProvision ;
    dpv:hasPersonalData pd:Email ;
    dpv:hasProcessing dpv:Collect ;
    # Specifying location of notice
    # In this case, as a website, or could be a domain
    dpv:hasLocation "https://example.com"^^xsd:anyURI .

(META Example ID: E0022; link: source file; contributed by Harshvardhan J. Pandit on 2024-06-10)

Notice Types

DPV provides a taxonomy to represent the different notices commonly utilised in the context of data and technology use-cases. These include notices categorised by their role in providing information, such as [=PrivacyNotice=] and [=ConsentNotice=], and notices categorised by their UI/UX aspects, such as [=GraphicalNotice=], [=DashboardNotice=], and [=LayeredNotice=].

dpv:DashboardNotice: A notice that is provided within a dashboard also used for other purposes go to full definition
dpv:DataTransferNotice: Notice for the legal entity for the transfer of its data go to full definition
dpv:DeviceNotice: A notice provided using the functionality provided by a device e.g. using the popup or alert feature go to full definition
dpv:GraphicalNotice: A notice that uses graphical elements such as visualisations and icons go to full definition
dpv:JITNotice: A notice that is provided "just in time" when collecting information or performing an activity go to full definition
dpv:LayeredNotice: A notice that contains layered elements go to full definition
dpv:OralNotice: A notice provided orally or verbally go to full definition
dpv:PostedNotice: A notice that is posted as a sign or banner go to full definition
dpv:PrintedNotice: A notice that is provided in a printed form on or along with a device go to full definition
dpv:PrivacyNotice: Represents a notice or document outlining information regarding privacy go to full definition
- dpv:ConsentNotice: A Notice for information provision associated with Consent go to full definition
dpv:SecurityIncidentNotice: A notice providing information about security incident(s) go to full definition
- dpv:DataBreachNotice: A notice providing information about data breach(es) i.e. unauthorised transfer, access, use, or modification of data go to full definition

Notice Layer and Icons

For graphical notices that are composites of multiple 'layers' or utilise visual elements, the concepts [=NoticeLayer=] and [=NoticeIcon=] along with their corresponding relations [=hasNoticeLayer=] and [=hasNoticeIcon=] are useful to express to represent notices in terms of modular components.

This example shows a Consent Notice that is structured in 2 layers - first for a summary and a second layer providing detailed overview of the intended processing. The layers contain controls for consent and rights which are accompanied by the label to be used e.g. for the button in the UI, and the icon to be displayed alongside it. This example also shows how a consent notice can be expressed in a machine-readable form in a manner that is similar to and can be used to create a graphical notice such as on a website or in a mobile app.

ex:ExampleNotice a dpv:ConsentNotice ;
    dct:title "Consent Notice for Service X"@en ;
    dct:hasLocation "https://example.com/service-x"^^xsd:anyURI ;
    dpv:hasNoticeLayer [  # Layer showing the 'overview'
        a dpv:NoticeLayer ;
        dct:description "Consent to use location for providing x"@en ;
        dpv:hasPurpose dpv:ServicePersonalisation ;
        dpv:hasPersonalData pd:Location, pd:Email ;
        dpv:hasLegalBasis dpv:ExpressedConsent ;
        dpv:hasConsentControl [  # Consent control with label and icon
            a dpv:ProvideConsent ; 
            dct:title "Accept"@en ;
            dpv:hasNoticeIcon ex:iconGiveConsent ; 
        ], [ 
            a dpv:RefuseConsent ;
            dct:title "Refuse"@en ; 
            dpv:hasNoticeIcon ex:iconRefuseConsent ; 
        ] ;
    ], [  # Layer showing the 'detailed' view
        a dpv:NoticeLayer ;
        # link to full privacy notice for the service
        dpv:hasNotice "https://example.com/privacy-notice"^^xsd:anyURI ;
        dpv:hasProcess [ # process for use of location
                a dpv:Process ;
                dpv:hasPurpose dpv:ServicePersonalisation ;
                dpv:hasPersonalData pd:Location ;
                dpv:hasProcessing dpv:Collect, dpv:Use ;
                dpv:hasLegalBasis eu-gdpr:A6-1-a ;
            ], [ # process stating location is also used to prevent fraud
                a dpv:Process ;
                dpv:hasPurpose dpv:FraudPreventionAndDetection ;
                dpv:hasPersonalData pd:Location ;
                dpv:hasProcessing dpv:Collect, dpv:Store, dpv:Use ;
                dpv:hasLegalBasis dpv:LegitimateInterest ;
                dpv:hasStorageLocation loc:EU ;
                dpv:hasRecipient ex:AcmeInc ;
            ] ;
        dpv:hasConsentControl [
            a dpv:ManageConsent ; 
            dct:title "Manage Consent"@en ;
            dpv:hasNoticeIcon ex:iconManageConsent ; 
        ], [ 
            a dpv:WithdrawConsent ;
            dpv:hasRight eu-gdpr:A7-3 ;  # asserts control includes a right
            dct:title "Withdraw Consent"@en ;
            dpv:hasNoticeIcon ex:iconWithdrawConsent ; 
        ] ;
        dpv:hasRight [
            a eu-gdpr:A20 ; # icon used to indicate rights exercise
            dct:title "Right to Data Portability"@en ;
            dpv:isExercisedAt "https://example.com/rights"^^xsd:anyURI ;
            dpv:hasNoticeIcon ex:iconExerciseRight ; 
        ] ;
        dpv:hasDataController ex:Company ;
        dpv:hasDataProcessor ex:AcmeInc ;
        dpv:hasApplicableLaw legal-eu:law-GDPR ;
        ] ;
    ] .

(META Example ID: E0072; link: source file; contributed by Harshvardhan J. Pandit on 2024-12-17)

Notice Statuses

[=NoticeStatus=] represents a status about a [=Notice=], and is associated using the relation [=hasNoticeStatus=]. The DPV provides specific statuses modelling the lifecycle associated with notice provision and usage, such as [=NoticeCommunicated=] to indicate a notice has been provided, [=NoticeUpdated=] to indicate a notice has been updated, and [=NoticeLatest=] to indicate a notice is at its 'latest' iteration.

dpv:NoticeCommunicated: Status indicating the notice has been communicated go to full definition
dpv:NoticeGenerated: Status indicating the notice has been generated go to full definition
dpv:NoticeLatest: Status indicating the notice is currently at its latest iteration go to full definition
dpv:NoticeStale: Status indicating the notice is stale or not up to date or not the latest version go to full definition
dpv:NoticeUnused: Status indicating the notice has been communicated but has not yet been used e.g. the recipient has not acknowledged it or has not taken the intended action go to full definition
dpv:NoticeUpdated: Status indicating the notice has been updated and its contents or implications have changed go to full definition
dpv:NoticeUsed: Status indicating the notice has been communicated and has been used e.g. the recipient has acknowledged it or taken the intended action go to full definition

In this example, statuses associated with a notice are maintained in a record. The first part shows a notice status within a common process representing all users showing the notice has been communicated i.e. shown or delivered to the users. The second method shows a data processing record where the notice status is included as part of other matters e.g. data collection or rights exercise. The third method shows a record containing only the notice status for a specific user. The fourth method shows how the notice status can also be recorded as part of the notice metadata itself.

ex:ExampleNotice a dpv:Notice ; # a generic notice
    dpv:hasLocation "https://example.com"^^xsd:anyURI . # where notice will be shown

# Method 1: Notice has been communicated to all users
ex:SampleProcess1 a dpv:Process ;
    dpv:hasNotice ex:ExampleNotice ;
    dpv:hasDataSubject dpv:User ;
    # Method 1a: a notice is shown
    # Location is not in the status, but is in the notice
    dpv:hasNoticeStatus dpv:NoticeCommunicated ;
    # Method 1b: the latest notice version is used by the user
    # Location is included for where notice was provided
    dpv:hasNoticeStatus [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeCommunicated, dpv:NoticeLatest ;
        dpv:hasLocation "https://example.com/dashboard"^^xsd:anyURI ;
    ] .

# Method 2: Processing record per user with notice status
ex:Log1 a dpv:DataProcessingRecord ;
    dpv:hasDataSubject ex:Alice ;
    dpv:hasNotice ex:ExampleNotice ;
    dpv:hasNoticeStatus [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeCommunicated ;
        dct:date "2025-01-01"^^xsd:date ;
    ], [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeUsed, dpv:NoticeLatest ;
        dct:date "2025-01-02"^^xsd:date ;
    ] .

# Method 3: Record per user with only the notice status
ex:NoticeLog1 a dpv:DataProcessingRecord, dpv:NoticeStatus ;
    dpv:hasDataSubject ex:Alice ;
    dpv:hasNotice ex:ExampleNotice ;
    dpv:hasNoticeStatus [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeCommunicated ;
        dct:date "2025-01-01"^^xsd:date ;
    ], [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeUsed, dpv:NoticeLatest ;
        dct:date "2025-01-02"^^xsd:date ;
    ], [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeStale ;
        dct:date "2025-01-03"^^xsd:date ;
    ], [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeUpdated, dpv:NoticeLatest ;
        dct:date "2025-01-04"^^xsd:date ;
    ] .

# Method 4: Track notice lifcycle in the notice itself
ex:ExampleNotice a dpv:Notice ;
    dpv:hasNoticeStatus [
        a dpv:NoticeStatus ;
        skos:broader dpv:NoticeCommunicated ;
        dpv:hasLocation "https://example.com/"^^xsd:anyURI ;
        dct:date "2025-01-01"^^xsd:date ;
    ] .

(META Example ID: E0073; link: source file; contributed by Harshvardhan J. Pandit on 2024-12-17)

Consent Notice

Requirements for informed consent require provision of information before the consent is obtained so as to inform the individual. This information is typically provided through a notice, which can be specified using the concept ConsentNotice and the relation hasNotice. As with the previous notice example, a consent notice can be a link to the actual notice document or web-page, or contain description of the notice contents regarding processing of personal data.

This example first specifies a privacy notice as a document is being used in the context of a service as represented using a personal data handling instance. Then it provides an alternative representation where the contents of a notice are described using DPV.

# Approach 1: specify notice for an instance of consent
ex:UserConsent rdf:type dpv:Consent ;
    dpv:hasDataSubject ex:User12345 ;
    # notice can be references in different forms, e.g. URL, string
    dpv:hasNotice ex:AcmeConsentNotice ; # RDF
    dpv:hasNotice "https://example.com/AcmeConsentNotice" ; # URL
    dpv:hasNotice "Notice-v3.456" . # identifier

# Approach 2: specify notice for a group of activities
ex:PDH rdf:type dpv:Process ;
    dpv:hasPurpose ... ;
    dpv:hasProcessing ... ;
    dpv:hasPersonalData ... ;
    dpv:hasLegalBasis dpv:Consent ;
    dpv:hasNotice ex:AcmeConsentNotice .
ex:UserConsent rdf:type dpv:Consent ;
    dpv:hasDataSubject ex:User12345 ;
    # notice is part of PDH, not declared for each consent instance
    dpv:hasProcess ex:PDH .

(META Example ID: E0017; link: source file; contributed by Harshvardhan J. Pandit on 2024-06-10)

Policies

[=Policy=] represents a guidance document outlining procedures, plans, principles, decisions, intent, or protocols. It is associated using the relation [=hasPolicy=]. DPV provides concepts to represent policies regarding:

[=DataProcessingPolicy=] for specifying how data processing takes place - including [=DataDeletionPolicy=], [=DataErasurePolicy=], [=DataRestorationPolicy=], and [=DataStoragePolicy=].
In addition to the above data related policies, DPV also defines [=DataJurisdictionPolicy=] to specify jurisdictional requirements, and [=DataReusePolicy=] for specifying how data can be further used for purposes other than its initial purpose.
[=InformationSecurityPolicy=] regarding information security
[=LoggingPolicy=] regarding logging of information (i.e. maintaining logs and records as a technical concept).
[=MonitoringPolicy=] for how something should be monitored e.g. other policies and activities.
[=RecertificationPolicy=] for how often or when certification should be renewed or checked for conformance.

DPV does not provide the concept PrivacyPolicy, but instead suggests to use the better expressed and less ambiguous term - PrivacyNotice. This is to explicitly denote that the role of what is considered common as a "privacy policy" is actually a "notice" intended for end users and other individuals, instead of being an internal policy document for how the company should approach 'privacy'. More information about notices is provided in the next section.

This example shows the compliance status associated with activities in terms of the organisation's policies and for the EU GDPR obligations. It shows how compliance issues and lawfulness can be documented as a status associated with a process. For GDPR, it uses the concepts from EU-GDPR extension regarding lawfulness.

ex:PDH1 a dpv:Process ;
    dpv:hasComplianceStatus dpv:Compliant ;
    # to indicate compliance with a policy
    dpv:hasStatus [
        dpv:hasPolicy dpv:Policy ;
        dpv:hasComplianceStatus dpv:Compliant ;
    ] ;
    # to indicate compliance with a law
    dpv:hasComplianceStatus [
        a dpv:PartiallyCompliant ;
        dpv:hasApplicableLaw legal-eu:GDPR ;
    ] ;
    # to highlight issues in compliance 
    dpv:hasComplianceStatus [
        a dpv:ComplianceViolation ;
        dpv:hasApplicableLaw legal-eu:GDPR ;
        dct:description "Records of Processing Activities are not updated"@en ;
        dct:subject "GDPR Article 30"@en ;
    ] .

ex:PDH2 a dpv:Process ;
    dpv:hasLawfulness dpv:Lawful ; # doesn't indicate which law
    dpv:hasLawfulness [
        a dpv:Lawful ; # lawful for GDPR
        dpv:hasApplicableLaw legal-eu:GDPR ;
    ] ;
    dpv:hasLawfulness [
        a dpv:Lawful ; # lawful for GDPR Article 30
        dpv:hasApplicableLaw legal-eu:GDPR ;
        dct:subject "GDPR Article 30"@en ;
    ] ;
    # using the EU-GDPR extension 
    dpv:hasLawfulness eu-gdpr:GDPRCompliant ;

(META Example ID: E0055; link: source file; contributed by Harshvardhan J. Pandit on 2024-06-11)

Record Keeping

Records, or storing of information with the intention to use it in the future, are an important obligation for several legal as well as other obligations related to data protection and privacy. To support record keeping, the concept [=RecordsOfActivities=] is provided. Specific records are represented with the concepts:

[=DataBreachRecord=] for data breach records
[=DataProcessingRecord=] for records about data processing activities, including [=ConsentRecord=], [=DataTransferRecord=], [=SecurityIncidentRecord=], and [=ROPA=] (Records of Processing Activities) - which is a specific document required by regulations such as GDPR.

DPV also contains the Record concept as a type of Processing operation, and RecordManagement as a type of Purpose. The former refers to recording of personal data as a means to obtain it (e.g. record a conversation), while the latter relates to the use of personal data towards creating records and managing them as a purpose (e.g. record consent was given). These are distinct, though relevant to the organisational measures related to record keeping.

Record keeping may require further vocabularies to represent details such as various temporal annotations, provenance, statuses, or other contextual information that is not possible or provided for by DPV's concepts. In such cases, we suggest utilising other standardised vocabularies where applicable.

This (simplified) example shows a consent record containing the topic of consent (i.e. which processing activities it was about), its current status, and when it was given by the data subject. The structure of a record is highly dependent on the requirements of the use-case, and can vary across implementations. In this case, it is based on the ISO/IEC TS 27560:2023 Privacy technologies — Consent record information structure, for which we provide the implementation guide [[[GUIDE-Consent-27560]]].

The example uses the DCMI Metadata Terms (dct) vocabulary to indicate metadata such as title and timestamps. Other vocabularies such as PROV-O can be used to also indicate provenance information such as when it was generated and how it was produced.

:63ded36f-4acd-4f3c-991e-6cb636698523 a dpv:ConsentRecord ;
    dct:hasVersion "27560-WD5" ;
    dpv:hasIdentifier "63ded36f-4acd-4f3c-991e-6cb636698523" ;
    dpv:hasDataSubject "96121fde-199f-4848-8942-4436e270513a" ;
    dpv:hasNotice <https://example.com/notice/WD5> ;
    dpv:hasProcess [
        a dpv:Process ;
        dct:title "Send Newsletters with Seasonal Offers"@en ;
        dpv:hasPurpose dpv:Marketing ;
        dpv:hasLegalBasis dpv:Consent ;
        dpv:hasPersonalData pd:Email ;
        dpv:hasDataController ex:Acme ;
        dpv:hasProcessing dpv:Collect, dpv:Store ;
        dpv:hasStorageCondition [ 
            dpv:hasLocation loc:IE ;
            dpv:hasDuration 63115200 ;
        ] ;
        dpv:hasJurisdiction loc:EU ;
        dpv:hasRecipient ex:Beta, ex:Epsilon ;
    ] ;
    dpv:hasConsentStatus dpv:ConsentGiven ;
    dct:hasPart [
        a dpv:ConsentGiven, dpv:ExplicitlyExpressedConsent ;
        dpv:isIndicatedAtTime "2021-05-28T12:24:00"^^xsd:dateTime ;
        dpv:hasDuration 63115200 ;
        dpv:hasEntity "96121fde-199f-4848-8942-4436e270513a"
    ] .

(META Example ID: E0023; link: source file; contributed by Harshvardhan J. Pandit on 2024-06-10)

Vocabulary Index

Classes

Access Control Method

Term	AccessControlMethod	Prefix	dpv
Label	Access Control Method
IRI	https://w3id.org/dpv#AccessControlMethod
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods which restrict access to a place or resource
Examples	`dex:E0020 ::` Using technical measure: Protecting data using encryption and access control
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DEX

Activity Monitoring

Term	ActivityMonitoring	Prefix	dpv
Label	Activity Monitoring
IRI	https://w3id.org/dpv#ActivityMonitoring
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Monitoring of activities including assessing whether they have been successfully initiated and completed
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

AI Literacy

Term	AILiteracy	Prefix	dpv
Label	AI Literacy
IRI	https://w3id.org/dpv#AILiteracy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DigitalLiteracy → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding AI
Date Created	2024-05-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

None

Term	AINotice	Prefix	dpv
Label	None
IRI	https://w3id.org/dpv#AINotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice providing information regarding the particulars of an AI system such as its intended purpose and proper use
Date Created	2024-12-01
Contributors	Delaram Golpayegani
See More:	section TOM-ORGANISATIONAL in DPV

Anonymisation

Term	Anonymisation	Prefix	dpv
Label	Anonymisation
IRI	https://w3id.org/dpv#Anonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Anonymisation is the process by which data is irreversibly altered in such a way that a data subject can no longer be identified directly or indirectly, either by the entity holding the data alone or in collaboration with other entities and information sources
Source	ISO 29100:2011
Date Created	2019-04-05
Date Modified	2022-11-24
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar, Maya Borges, Damien Desfontaines
See More:	section TOM-TECHNICAL in DPV

Approval Procedure

Term	ApprovalProcedure	Prefix	dpv
Label	Approval Procedure
IRI	https://w3id.org/dpv#ApprovalProcedure
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A procedure or process for determining and managing approvals for activities as part of governance
Date Created	2024-12-01
Contributors	Delaram Golpayegani
See More:	section TOM-ORGANISATIONAL in DPV

Assessment

Term	Assessment	Prefix	dpv
Label	Assessment
IRI	https://w3id.org/dpv#Assessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	The document, plan, or process for assessment or determination towards a purpose e.g. assessment of legality or impact assessments
Date Created	2021-09-08
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Asset Management Procedures

Term	AssetManagementProcedures	Prefix	dpv
Label	Asset Management Procedures
IRI	https://w3id.org/dpv#AssetManagementProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to management of assets
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Asymmetric Cryptography

Term	AsymmetricCryptography	Prefix	dpv
Label	Asymmetric Cryptography
IRI	https://w3id.org/dpv#AsymmetricCryptography
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of public-key cryptography or asymmetric cryptography involving a public and private pair of keys
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Asymmetric Encryption

Term	AsymmetricEncryption	Prefix	dpv
Label	Asymmetric Encryption
IRI	https://w3id.org/dpv#AsymmetricEncryption
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of asymmetric cryptography to encrypt data
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Audit

Term	Audit	Prefix	dpv
Label	Audit
IRI	https://w3id.org/dpv#Audit
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An audit is a systematic examination or evaluation of records, processes, or systems towards a specific objective such as to assess accuracy, compliance, effectiveness, or performance
Date Created	2024-12-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Authentication using ABC

Term	Authentication-ABC	Prefix	dpv
Label	Authentication using ABC
IRI	https://w3id.org/dpv#Authentication-ABC
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of Attribute Based Credentials (ABC) to perform and manage authentication
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Authentication using PABC

Term	Authentication-PABC	Prefix	dpv
Label	Authentication using PABC
IRI	https://w3id.org/dpv#Authentication-PABC
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of Privacy-enhancing Attribute Based Credentials (ABC) to perform and manage authentication
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Authentication Protocols

Term	AuthenticationProtocols	Prefix	dpv
Label	Authentication Protocols
IRI	https://w3id.org/dpv#AuthenticationProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Protocols involving validation of identity i.e. authentication of a person or information
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DPV

Authorisation Procedure

Term	AuthorisationProcedure	Prefix	dpv
Label	Authorisation Procedure
IRI	https://w3id.org/dpv#AuthorisationProcedure
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures for determining authorisation through permission or authority
Usage Note	non-technical authorisation procedures: How is it described on an organisational level, who gets access to the data
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Authorisation Protocols

Term	AuthorisationProtocols	Prefix	dpv
Label	Authorisation Protocols
IRI	https://w3id.org/dpv#AuthorisationProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Protocols involving authorisation of roles or profiles to determine permission, rights, or privileges
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Background Checks

Term	BackgroundChecks	Prefix	dpv
Label	Background Checks
IRI	https://w3id.org/dpv#BackgroundChecks
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedure where the background of an entity is assessed to identity vulnerabilities and threats due to their current or intended role
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Biometric Authentication

Term	BiometricAuthentication	Prefix	dpv
Label	Biometric Authentication
IRI	https://w3id.org/dpv#BiometricAuthentication
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of biometric data for authentication
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Certification

Term	Certification	Prefix	dpv
Label	Certification
IRI	https://w3id.org/dpv#Certification
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:CertificationSeal → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Certification mechanisms, seals, and marks for the purpose of demonstrating compliance
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Certification and Seal

Term	CertificationSeal	Prefix	dpv
Label	Certification and Seal
IRI	https://w3id.org/dpv#CertificationSeal
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Certifications, seals, and marks indicating compliance to regulations or practices
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Code of Conduct

Term	CodeOfConduct	Prefix	dpv
Label	Code of Conduct
IRI	https://w3id.org/dpv#CodeOfConduct
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A set of rules or procedures outlining the norms and practices for conducting activities
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Compliance Assessment

Term	ComplianceAssessment	Prefix	dpv
Label	Compliance Assessment
IRI	https://w3id.org/dpv#ComplianceAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Assessment regarding compliance (e.g. internal policy, regulations)
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Compliance Monitoring

Term	ComplianceMonitoring	Prefix	dpv
Label	Compliance Monitoring
IRI	https://w3id.org/dpv#ComplianceMonitoring
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Monitoring of compliance (e.g. internal policy, regulations)
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Confidentiality Agreement

Term	ConfidentialityAgreement	Prefix	dpv
Label	Confidentiality Agreement
IRI	https://w3id.org/dpv#ConfidentialityAgreement
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:LegalAgreement → dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Agreements that enforce confidentiality for e.g. to protect business, professional, or company secrets
Source
Date Created	2022-02-09
Date Modified	2024-08-27
See More:	section TOM-LEGAL in DPV

Conformance Assessment

Term	ConformanceAssessment	Prefix	dpv
Label	Conformance Assessment
IRI	https://w3id.org/dpv#ConformanceAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Assessment regarding conformance with standards or norms or guidelines or similar instruments
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Consent Management

Term	ConsentManagement	Prefix	dpv
Label	Consent Management
IRI	https://w3id.org/dpv#ConsentManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:PermissionManagement → dpv:RightsManagement → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods to obtain, provide, modify, and withdraw consent along with maintaining a record of consent, retrieving records, and processing changes in consent states
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Consent Notice

Term	ConsentNotice	Prefix	dpv
Label	Consent Notice
IRI	https://w3id.org/dpv#ConsentNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:PrivacyNotice → dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A Notice for information provision associated with Consent
Examples	`dex:E0072 ::` Using Notice Layer and Icon in a Consent Notice
Date Created	2022-06-21
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan, Julian Flake
See More:	section TOM-ORGANISATIONAL in DEX , section TOM-NOTICE in DEX

Consent Receipt

Term	ConsentReceipt	Prefix	dpv
Label	Consent Receipt
IRI	https://w3id.org/dpv#ConsentReceipt
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:ConsentRecord → dpv:DataProcessingRecord → dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	A record of consent or consent related activities that is provided to another entity
Date Created	2022-06-22
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Consent Record

Term	ConsentRecord	Prefix	dpv
Label	Consent Record
IRI	https://w3id.org/dpv#ConsentRecord
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingRecord → dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	A Record of Consent or Consent related activities
Examples	`dex:E0016 ::` Indicating details about an individual's consent `dex:E0023 ::` Consent record example
Date Created	2022-06-22
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan, Julian Flake
See More:	section TOM-ORGANISATIONAL in DEX

Consultation

Term	Consultation	Prefix	dpv
Label	Consultation
IRI	https://w3id.org/dpv#Consultation
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Consultation is a process of receiving feedback, advice, or opinion from an external agency
Date Created	2020-11-04
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-ORGANISATIONAL in DPV

Consultation with Authority

Term	ConsultationWithAuthority	Prefix	dpv
Label	Consultation with Authority
IRI	https://w3id.org/dpv#ConsultationWithAuthority
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Consultation → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Consultation with an authority or authoritative entity
Date Created	2020-11-04
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-ORGANISATIONAL in DPV

Consultation with Data Subject

Term	ConsultationWithDataSubject	Prefix	dpv
Label	Consultation with Data Subject
IRI	https://w3id.org/dpv#ConsultationWithDataSubject
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Consultation → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Consultation with data subject(s) or their representative(s)
Date Created	2022-06-15
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Consultation with Data Subject Representative

Term	ConsultationWithDataSubjectRepresentative	Prefix	dpv
Label	Consultation with Data Subject Representative
IRI	https://w3id.org/dpv#ConsultationWithDataSubjectRepresentative
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:ConsultationWithDataSubject → dpv:Consultation → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Consultation with representative of data subject(s)
Date Created	2022-10-22
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Consultation with DPO

Term	ConsultationWithDPO	Prefix	dpv
Label	Consultation with DPO
IRI	https://w3id.org/dpv#ConsultationWithDPO
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Consultation → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Consultation with Data Protection Officer(s)
Date Created	2022-06-15
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Contractual Terms

Term	ContractualTerms	Prefix	dpv
Label	Contractual Terms
IRI	https://w3id.org/dpv#ContractualTerms
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Contractual terms governing data handling within or with an entity
Date Created	2019-04-05
Date Modified	2024-08-27
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-LEGAL in DPV

Credential Management

Term	CredentialManagement	Prefix	dpv
Label	Credential Management
IRI	https://w3id.org/dpv#CredentialManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:AuthorisationProcedure → dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of credentials and their use in authorisations
Date Created	2022-06-15
Contributors	Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Cryptographic Authentication

Term	CryptographicAuthentication	Prefix	dpv
Label	Cryptographic Authentication
IRI	https://w3id.org/dpv#CryptographicAuthentication
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptography for authentication
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Cryptographic Key Management

Term	CryptographicKeyManagement	Prefix	dpv
Label	Cryptographic Key Management
IRI	https://w3id.org/dpv#CryptographicKeyManagement
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of cryptographic keys, including their generation, storage, assessment, and safekeeping
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Cryptographic Methods

Term	CryptographicMethods	Prefix	dpv
Label	Cryptographic Methods
IRI	https://w3id.org/dpv#CryptographicMethods
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods to perform tasks
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Cybersecurity Training

Term	CybersecurityTraining	Prefix	dpv
Label	Cybersecurity Training
IRI	https://w3id.org/dpv#CybersecurityTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:StaffTraining → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Training methods related to cybersecurity
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Dashboard Notice

Term	DashboardNotice	Prefix	dpv
Label	Dashboard Notice
IRI	https://w3id.org/dpv#DashboardNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that is provided within a dashboard also used for other purposes
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Data Backup Protocols

Term	DataBackupProtocols	Prefix	dpv
Label	Data Backup Protocols
IRI	https://w3id.org/dpv#DataBackupProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Protocols or plans for backing up of data
Date Created	2022-06-15
Contributors	Georg P. Krog
See More:	section TOM-TECHNICAL in DPV

Data Breach Notice

Term	DataBreachNotice	Prefix	dpv
Label	Data Breach Notice
IRI	https://w3id.org/dpv#DataBreachNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityIncidentNotice → dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice providing information about data breach(es) i.e. unauthorised transfer, access, use, or modification of data
Source
Date Created	2024-04-14
Contributors	Georg P. Krog, Paul Ryan, David Hickey, Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV , section TOM-NOTICE in DPV

Data Breach Notification

Term	DataBreachNotification	Prefix	dpv
Label	Data Breach Notification
IRI	https://w3id.org/dpv#DataBreachNotification
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityIncidentNotification → dpv:Notification → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Notification of information about data breach(es) i.e. unauthorised transfer, access, use, or modification of data
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Breach Record

Term	DataBreachRecord	Prefix	dpv
Label	Data Breach Record
IRI	https://w3id.org/dpv#DataBreachRecord
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	Record of a data breach incident
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Deletion Policy

Term	DataDeletionPolicy	Prefix	dpv
Label	Data Deletion Policy
IRI	https://w3id.org/dpv#DataDeletionPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding deletion of data
Usage Note	Deletion and Erasure are distinct activities where deletion refers to logical removal of data with the possibility of retrieval whereas erasure refers to destruction of data such that it cannot be retrieved. See dpv:DataErasurePolicy
Date Created	2024-04-14
Contributors	Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Erasure Policy

Term	DataErasurePolicy	Prefix	dpv
Label	Data Erasure Policy
IRI	https://w3id.org/dpv#DataErasurePolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding erasure of data
Usage Note	Erasure or data destruction or secure removal of data refers to irreversible erasure of data. See dpv:DataDeletion for reversible or logical deletion of data
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Governance

Term	DataGovernance	Prefix	dpv
Label	Data Governance
IRI	https://w3id.org/dpv#DataGovernance
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with topics typically considered to be part of 'Data Governance'
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Handling Clause

Term	DataHandlingClause	Prefix	dpv
Label	Data Handling Clause
IRI	https://w3id.org/dpv#DataHandlingClause
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:ContractualTerms → dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Conctractual clauses governing handling of data within or by an entity
Date Created	2024-08-27
See More:	section TOM-LEGAL in DPV

Data Interoperability Assessment

Term	DataInteroperabilityAssessment	Prefix	dpv
Label	Data Interoperability Assessment
IRI	https://w3id.org/dpv#DataInteroperabilityAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:DataInteroperabilityManagement → dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasPurpose, dpv:hasTechnicalOrganisationalMeasure
Definition	Measures associated with assessment of data interoperability
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Interoperability Improvement

Term	DataInteroperabilityImprovement	Prefix	dpv
Label	Data Interoperability Improvement
IRI	https://w3id.org/dpv#DataInteroperabilityImprovement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataInteroperabilityManagement → dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with improvement of data interoperability
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Interoperability Management

Term	DataInteroperabilityManagement	Prefix	dpv
Label	Data Interoperability Management
IRI	https://w3id.org/dpv#DataInteroperabilityManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with management of data interoperability
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Inventory Management

Term	DataInventoryManagement	Prefix	dpv
Label	Data Inventory Management
IRI	https://w3id.org/dpv#DataInventoryManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with management of data inventory or a data asset list
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Jurisdiction Policy

Term	DataJurisdictionPolicy	Prefix	dpv
Label	Data Jurisdiction Policy
IRI	https://w3id.org/dpv#DataJurisdictionPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy specifying jurisdictional requirements for data processing
Usage Note	Jurisdictional requirements can refer to data being stored within specific jurisdictions, or that data must be in line with jurisdictional laws and norms
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Literacy

Term	DataLiteracy	Prefix	dpv
Label	Data Literacy
IRI	https://w3id.org/dpv#DataLiteracy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DigitalLiteracy → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding data
Date Created	2024-05-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Processing Policy

Term	DataProcessingPolicy	Prefix	dpv
Label	Data Processing Policy
IRI	https://w3id.org/dpv#DataProcessingPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding data processing activities
Usage Note	This only refers to the policy or plan or procedure describing how the data processing should be conducted. To represent the granular details, see further concepts e.g. dpv:DataStoragePolicy to describe policy regarding storage, or dpv:DataStorageCondition to represent information within the policy for how information should be stored
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Processing Record

Term	DataProcessingRecord	Prefix	dpv
Label	Data Processing Record
IRI	https://w3id.org/dpv#DataProcessingRecord
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	Record of data processing, whether ex-ante or ex-post
Date Created	2021-09-08
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Protection Training

Term	DataProtectionTraining	Prefix	dpv
Label	Data Protection Training
IRI	https://w3id.org/dpv#DataProtectionTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:StaffTraining → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Training intended to increase knowledge regarding data protection
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Quality Assessment

Term	DataQualityAssessment	Prefix	dpv
Label	Data Quality Assessment
IRI	https://w3id.org/dpv#DataQualityAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:DataQualityManagement → dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasPurpose, dpv:hasTechnicalOrganisationalMeasure
Definition	Measures associated with assessment of data quality
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Quality Improvement

Term	DataQualityImprovement	Prefix	dpv
Label	Data Quality Improvement
IRI	https://w3id.org/dpv#DataQualityImprovement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataQualityManagement → dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with improvement of data quality
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Quality Management

Term	DataQualityManagement	Prefix	dpv
Label	Data Quality Management
IRI	https://w3id.org/dpv#DataQualityManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with management of data quality
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Redaction

Term	DataRedaction	Prefix	dpv
Label	Data Redaction
IRI	https://w3id.org/dpv#DataRedaction
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Removal of sensitive information from a data or document
Date Created	2020-10-01
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Data Restoration Policy

Term	DataRestorationPolicy	Prefix	dpv
Label	Data Restoration Policy
IRI	https://w3id.org/dpv#DataRestorationPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding restoration of data
Usage Note	Restoration can refer to how data is restored from a backup
Date Created	2024-04-14
Contributors	Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Reuse Policy

Term	DataReusePolicy	Prefix	dpv
Label	Data Reuse Policy
IRI	https://w3id.org/dpv#DataReusePolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding reuse of data i.e. using data for purposes other than its initial purpose
Usage Note	This policy can be used to describe the procedures associated with undertaking such reuse of data, for example to assess its legality and the compatibility of the initial and subsequent purposes
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Sanitisation Technique

Term	DataSanitisationTechnique	Prefix	dpv
Label	Data Sanitisation Technique
IRI	https://w3id.org/dpv#DataSanitisationTechnique
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Cleaning or any removal or re-organisation of elements in data based on selective criteria
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Data Security Management

Term	DataSecurityManagement	Prefix	dpv
Label	Data Security Management
IRI	https://w3id.org/dpv#DataSecurityManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPurpose, dpv:hasTechnicalOrganisationalMeasure
Definition	Measures associated with management of data security
Usage Note	Examples of data security management are assessing the appropriate security controls such as encryption, testing the implemented security controls, and ensuring it is protected and safeguarded from unintended actions
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Storage Policy

Term	DataStoragePolicy	Prefix	dpv
Label	Data Storage Policy
IRI	https://w3id.org/dpv#DataStoragePolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingPolicy → dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding storage of data, including the manner, duration, location, and conditions for storage
Date Created	2024-04-14
Contributors	Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Data Subject Rights Management

Term	DataSubjectRightsManagement	Prefix	dpv
Label	Data Subject Rights Management
IRI	https://w3id.org/dpv#DataSubjectRightsManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RightsManagement → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods to provide, implement, and exercise data subjects' rights
Usage Note	This concept only concerns the organisational management of rights, and does not represent the rights themselves - especially where such 'rights' are legally recognised or defined for the data subject or individual. The concept dpv:DataSubjectRight is provided to represent such legal rights.
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Data Transfer Notice

Term	DataTransferNotice	Prefix	dpv
Label	Data Transfer Notice
IRI	https://w3id.org/dpv#DataTransferNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Notice for the legal entity for the transfer of its data
Source
Date Created	2024-04-14
Contributors	Georg P. Krog, Paul Ryan, David Hickey, Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV , section TOM-NOTICE in DPV

Data Transfer Record

Term	DataTransferRecord	Prefix	dpv
Label	Data Transfer Record
IRI	https://w3id.org/dpv#DataTransferRecord
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingRecord → dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	Record of data transfer activities
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

De-Identification

Term	Deidentification	Prefix	dpv
Label	De-Identification
IRI	https://w3id.org/dpv#Deidentification
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Removal of identity or information to reduce identifiability
Source	NISTIR 8053
Date Created	2019-04-05
Date Modified	2022-11-24
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DPV

Design Standard

Term	DesignStandard	Prefix	dpv
Label	Design Standard
IRI	https://w3id.org/dpv#DesignStandard
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Standard → dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A set of rules or guidelines outlining criterias for design
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Deterministic Pseudonymisation

Term	DeterministicPseudonymisation	Prefix	dpv
Label	Deterministic Pseudonymisation
IRI	https://w3id.org/dpv#DeterministicPseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Pseudonymisation → dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Pseudonymisation achieved through a deterministic function
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Device Notice

Term	DeviceNotice	Prefix	dpv
Label	Device Notice
IRI	https://w3id.org/dpv#DeviceNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice provided using the functionality provided by a device e.g. using the popup or alert feature
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Differential Privacy

Term	DifferentialPrivacy	Prefix	dpv
Label	Differential Privacy
IRI	https://w3id.org/dpv#DifferentialPrivacy
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Utilisation of differential privacy where information is shared as patterns or groups to withhold individual elements
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Digital Literacy

Term	DigitalLiteracy	Prefix	dpv
Label	Digital Literacy
IRI	https://w3id.org/dpv#DigitalLiteracy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Providing skills, knowledge, and understanding to enable reading, writing, analysing, reasoning, and communicating regarding digital technologies and their implications
Date Created	2024-05-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Digital Rights Management

Term	DigitalRightsManagement	Prefix	dpv
Label	Digital Rights Management
IRI	https://w3id.org/dpv#DigitalRightsManagement
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of access, use, and other operations associated with digital content
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Digital Signatures

Term	DigitalSignatures	Prefix	dpv
Label	Digital Signatures
IRI	https://w3id.org/dpv#DigitalSignatures
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Expression and authentication of identity through digital information containing cryptographic signatures
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Disaster Recovery Procedures

Term	DisasterRecoveryProcedures	Prefix	dpv
Label	Disaster Recovery Procedures
IRI	https://w3id.org/dpv#DisasterRecoveryProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to management of disasters and recovery
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Distributed System Security

Term	DistributedSystemSecurity	Prefix	dpv
Label	Distributed System Security
IRI	https://w3id.org/dpv#DistributedSystemSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implementations provided using or over a distributed system
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Document Randomised Pseudonymisation

Term	DocumentRandomisedPseudonymisation	Prefix	dpv
Label	Document Randomised Pseudonymisation
IRI	https://w3id.org/dpv#DocumentRandomisedPseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Pseudonymisation → dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of randomised pseudonymisation where the same elements are assigned different values in the same document or database
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Document Security

Term	DocumentSecurity	Prefix	dpv
Label	Document Security
IRI	https://w3id.org/dpv#DocumentSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security measures enacted over documents to protect against tampering or restrict access
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Educational Training

Term	EducationalTraining	Prefix	dpv
Label	Educational Training
IRI	https://w3id.org/dpv#EducationalTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:StaffTraining → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Training methods that are intended to provide education on topic(s)
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Effectiveness Determination Procedures

Term	EffectivenessDeterminationProcedures	Prefix	dpv
Label	Effectiveness Determination Procedures
IRI	https://w3id.org/dpv#EffectivenessDeterminationProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures intended to determine effectiveness of other measures
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Encryption

Term	Encryption	Prefix	dpv
Label	Encryption
IRI	https://w3id.org/dpv#Encryption
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Technical measures consisting of encryption
Examples	`dex:E0020 ::` Using technical measure: Protecting data using encryption and access control
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DEX

Encryption at Rest

Term	EncryptionAtRest	Prefix	dpv
Label	Encryption at Rest
IRI	https://w3id.org/dpv#EncryptionAtRest
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Encryption of data when being stored (persistent encryption)
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DPV

Encryption in Transfer

Term	EncryptionInTransfer	Prefix	dpv
Label	Encryption in Transfer
IRI	https://w3id.org/dpv#EncryptionInTransfer
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Encryption of data in transit e.g. when being transferred from one location to another, including sharing
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-TECHNICAL in DPV

Encryption in Use

Term	EncryptionInUse	Prefix	dpv
Label	Encryption in Use
IRI	https://w3id.org/dpv#EncryptionInUse
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Encryption of data when it is being used
Date Created	2022-10-22
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

End-to-End Encryption (E2EE)

Term	EndToEndEncryption	Prefix	dpv
Label	End-to-End Encryption (E2EE)
IRI	https://w3id.org/dpv#EndToEndEncryption
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Encrypted communications where data is encrypted by the sender and decrypted by the intended receiver to prevent access to any third party
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Environmental Protection

Term	EnvironmentalProtection	Prefix	dpv
Label	Environmental Protection
IRI	https://w3id.org/dpv#EnvironmentalProtection
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection against environmental threats such as fire, floods, storms, etc.
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

File System Security

Term	FileSystemSecurity	Prefix	dpv
Label	File System Security
IRI	https://w3id.org/dpv#FileSystemSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented over a file system
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Fully Randomised Pseudonymisation

Term	FullyRandomisedPseudonymisation	Prefix	dpv
Label	Fully Randomised Pseudonymisation
IRI	https://w3id.org/dpv#FullyRandomisedPseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Pseudonymisation → dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of randomised pseudonymisation where the same elements are assigned different values each time they occur
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Governance Procedures

Term	GovernanceProcedures	Prefix	dpv
Label	Governance Procedures
IRI	https://w3id.org/dpv#GovernanceProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to governance (e.g. organisation, unit, team, process, system)
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Graphical Notice

Term	GraphicalNotice	Prefix	dpv
Label	Graphical Notice
IRI	https://w3id.org/dpv#GraphicalNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that uses graphical elements such as visualisations and icons
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Guideline

Term	Guideline	Prefix	dpv
Label	Guideline
IRI	https://w3id.org/dpv#Guideline
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Practices that specify how activities must be conducted
Date Created	2024-05-12
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Guidelines Principle

Term	GuidelinesPrinciple	Prefix	dpv
Label	Guidelines Principle
IRI	https://w3id.org/dpv#GuidelinesPrinciple
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Guidelines or Principles regarding processing and operational measures
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Hardware Security Protocols

Term	HardwareSecurityProtocols	Prefix	dpv
Label	Hardware Security Protocols
IRI	https://w3id.org/dpv#HardwareSecurityProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security protocols implemented at or within hardware
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Hash Functions

Term	HashFunctions	Prefix	dpv
Label	Hash Functions
IRI	https://w3id.org/dpv#HashFunctions
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of hash functions to map information or to retrieve a prior categorisation
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Hash-based Message Authentication Code (HMAC)

Term	HashMessageAuthenticationCode	Prefix	dpv
Label	Hash-based Message Authentication Code (HMAC)
IRI	https://w3id.org/dpv#HashMessageAuthenticationCode
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of HMAC where message authentication code (MAC) utilise a cryptographic hash function and a secret cryptographic key
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Homomorphic Encryption

Term	HomomorphicEncryption	Prefix	dpv
Label	Homomorphic Encryption
IRI	https://w3id.org/dpv#HomomorphicEncryption
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of Homomorphic encryption that permits computations on encrypted data without decrypting it
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Identity Management Method

Term	IdentityManagementMethod	Prefix	dpv
Label	Identity Management Method
IRI	https://w3id.org/dpv#IdentityManagementMethod
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:AuthorisationProcedure → dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of identity and identity-based processes
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Incident Management Procedures

Term	IncidentManagementProcedures	Prefix	dpv
Label	Incident Management Procedures
IRI	https://w3id.org/dpv#IncidentManagementProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to management of incidents
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Incident Reporting Communication

Term	IncidentReportingCommunication	Prefix	dpv
Label	Incident Reporting Communication
IRI	https://w3id.org/dpv#IncidentReportingCommunication
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to management of incident reporting
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Information Audit

Term	InformationAudit	Prefix	dpv
Label	Information Audit
IRI	https://w3id.org/dpv#InformationAudit
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Audit → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An audit that systematically examines the existence and use of information along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared)
Date Created	2024-12-17
Contributors	Paul Ryan, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Information Flow Control

Term	InformationFlowControl	Prefix	dpv
Label	Information Flow Control
IRI	https://w3id.org/dpv#InformationFlowControl
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of measures to control information flows
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Information Security Policy

Term	InformationSecurityPolicy	Prefix	dpv
Label	Information Security Policy
IRI	https://w3id.org/dpv#InformationSecurityPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding security of information
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Date Modified	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Intrusion Detection System

Term	IntrusionDetectionSystem	Prefix	dpv
Label	Intrusion Detection System
IRI	https://w3id.org/dpv#IntrusionDetectionSystem
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of measures to detect intrusions and other unauthorised attempts to gain access to a system
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Intellectual Property Rights Management

Term	IPRManagement	Prefix	dpv
Label	Intellectual Property Rights Management
IRI	https://w3id.org/dpv#IPRManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RightsManagement → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of Intellectual Property Rights with a view to identify and safeguard and enforce them
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Just-in-time Notice

Term	JITNotice	Prefix	dpv
Label	Just-in-time Notice
IRI	https://w3id.org/dpv#JITNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that is provided "just in time" when collecting information or performing an activity
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Layered Notice

Term	LayeredNotice	Prefix	dpv
Label	Layered Notice
IRI	https://w3id.org/dpv#LayeredNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that contains layered elements
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Legal Agreement

Term	LegalAgreement	Prefix	dpv
Label	Legal Agreement
IRI	https://w3id.org/dpv#LegalAgreement
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A legally binding agreement
Date Created	2019-04-05
Date Modified	2024-08-27
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-LEGAL in DPV

Legal Compliance Assessment

Term	LegalComplianceAssessment	Prefix	dpv
Label	Legal Compliance Assessment
IRI	https://w3id.org/dpv#LegalComplianceAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:ComplianceAssessment → dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Assessment regarding legal compliance
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Legal Compliance Audit

Term	LegalComplianceAudit	Prefix	dpv
Label	Legal Compliance Audit
IRI	https://w3id.org/dpv#LegalComplianceAudit
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Audit → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An audit that systematically examines the state of legal compliance by reviewing policies and procedures related to obligations and compliance requirements for specific laws and regulations
Date Created	2024-12-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Legal Measure

Term	LegalMeasure	Prefix	dpv
Label	Legal Measure
IRI	https://w3id.org/dpv#LegalMeasure
Type	rdfs:Class, skos:Concept
Broader/Parent types	dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Legal measures used to safeguard and ensure good practices in connection with data and technologies
Source
Date Created	2023-12-10
Date Modified	2023-12-10
See More:	section TOM in DPV

Legitimate Interest Assessment

Term	LegitimateInterestAssessment	Prefix	dpv
Label	Legitimate Interest Assessment
IRI	https://w3id.org/dpv#LegitimateInterestAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Indicates an assessment regarding the use of legitimate interest as a lawful basis by the data controller
Date Created	2021-09-08
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-ORGANISATIONAL in DPV

Logging Policy

Term	LoggingPolicy	Prefix	dpv
Label	Logging Policy
IRI	https://w3id.org/dpv#LoggingPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy for logging of information
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Date Modified	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Management Standard

Term	ManagementStandard	Prefix	dpv
Label	Management Standard
IRI	https://w3id.org/dpv#ManagementStandard
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Standard → dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Message Authentication Codes (MAC)

Term	MessageAuthenticationCodes	Prefix	dpv
Label	Message Authentication Codes (MAC)
IRI	https://w3id.org/dpv#MessageAuthenticationCodes
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicAuthentication → dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods to authenticate messages
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Metadata Management

Term	MetadataManagement	Prefix	dpv
Label	Metadata Management
IRI	https://w3id.org/dpv#MetadataManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataGovernance → dpv:OrganisationGovernance → dpv:Purpose
Object of relation	dpv:hasPurpose
Definition	Measures associated with management of metadata
Usage Note	Examples of metadata management include assessing which metadata are required or being used by technology, assessing their potential inclusion as personal data, and implementing a metadata based solution to manage data
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Mobile Platform Security

Term	MobilePlatformSecurity	Prefix	dpv
Label	Mobile Platform Security
IRI	https://w3id.org/dpv#MobilePlatformSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented over a mobile platform
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Monitoring Policy

Term	MonitoringPolicy	Prefix	dpv
Label	Monitoring Policy
IRI	https://w3id.org/dpv#MonitoringPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy for monitoring (e.g. progress, performance)
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Date Modified	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Monotonic Counter Pseudonymisation

Term	MonotonicCounterPseudonymisation	Prefix	dpv
Label	Monotonic Counter Pseudonymisation
IRI	https://w3id.org/dpv#MonotonicCounterPseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Pseudonymisation → dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A simple pseudonymisation method where identifiers are substituted by a number chosen by a monotonic counter
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Date Modified	2022-10-13
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Multi-Factor Authentication (MFA)

Term	MultiFactorAuthentication	Prefix	dpv
Label	Multi-Factor Authentication (MFA)
IRI	https://w3id.org/dpv#MultiFactorAuthentication
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An authentication system that uses two or more methods to authenticate
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Non-Disclosure Agreement (NDA)

Term	NDA	Prefix	dpv
Label	Non-Disclosure Agreement (NDA)
IRI	https://w3id.org/dpv#NDA
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:LegalAgreement → dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Non-disclosure Agreements e.g. preserving confidentiality of information
Date Created	2019-04-05
Date Modified	2024-08-27
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-LEGAL in DPV

Network Proxy Routing

Term	NetworkProxyRouting	Prefix	dpv
Label	Network Proxy Routing
IRI	https://w3id.org/dpv#NetworkProxyRouting
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of network routing using proxy
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Network Security Protocols

Term	NetworkSecurityProtocols	Prefix	dpv
Label	Network Security Protocols
IRI	https://w3id.org/dpv#NetworkSecurityProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or over networks protocols
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Notice

Term	Notice	Prefix	dpv
Label	Notice
IRI	https://w3id.org/dpv#Notice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Subject of relation	dpv:hasNoticeLayer, dpv:hasNoticeStatus
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice is an artefact for providing information, choices, or controls
Usage Note	Notice refers to the information whereas Notification refers to the provision of that notice. In several cases, they are used interchangeably - for example Privacy Notice as a measure or control refers to both the information as well as the act of making it available. For 'active' contexts where this distinction is important, e.g. data breach notifications, see Notification concept.
Examples	`dex:E0017 ::` Representing notice, provision, expiry, and withdrawal information for consent
Date Created	2021-09-08
Contributors	Paul Ryan, David Hickey, Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DEX , section TOM-NOTICE in DEX

Notice Communicated

Term	NoticeCommunicated	Prefix	dpv
Label	Notice Communicated
IRI	https://w3id.org/dpv#NoticeCommunicated
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice has been communicated
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Generated

Term	NoticeGenerated	Prefix	dpv
Label	Notice Generated
IRI	https://w3id.org/dpv#NoticeGenerated
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice has been generated
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Icon

Term	NoticeIcon	Prefix	dpv
Label	Notice Icon
IRI	https://w3id.org/dpv#NoticeIcon
Type	rdfs:Class, skos:Concept
Object of relation	dpv:hasNoticeIcon
Definition	An icon within a notice associated with specific information or elements
Examples	`dex:E0072 ::` Using Notice Layer and Icon in a Consent Notice
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DEX

Notice Latest

Term	NoticeLatest	Prefix	dpv
Label	Notice Latest
IRI	https://w3id.org/dpv#NoticeLatest
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice is currently at its latest iteration
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Layer

Term	NoticeLayer	Prefix	dpv
Label	Notice Layer
IRI	https://w3id.org/dpv#NoticeLayer
Type	rdfs:Class, skos:Concept
Subject of relation	dpv:hasNoticeLayer
Object of relation	dpv:hasNoticeLayer
Definition	A layer within a layered notice where the layer can be used for providing specific information or controls
Examples	`dex:E0072 ::` Using Notice Layer and Icon in a Consent Notice
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DEX

Notice Stale

Term	NoticeStale	Prefix	dpv
Label	Notice Stale
IRI	https://w3id.org/dpv#NoticeStale
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice is stale or not up to date or not the latest version
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Status

Term	NoticeStatus	Prefix	dpv
Label	Notice Status
IRI	https://w3id.org/dpv#NoticeStatus
Type	rdfs:Class, skos:Concept
Broader/Parent types	dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status associated with notice provision, use, and management
Examples	`dex:E0073 ::` Tracking the status of a Notice across its lifecycle
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DEX

Notice Unused

Term	NoticeUnused	Prefix	dpv
Label	Notice Unused
IRI	https://w3id.org/dpv#NoticeUnused
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice has been communicated but has not yet been used e.g. the recipient has not acknowledged it or has not taken the intended action
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Updated

Term	NoticeUpdated	Prefix	dpv
Label	Notice Updated
IRI	https://w3id.org/dpv#NoticeUpdated
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice has been updated and its contents or implications have changed
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notice Used

Term	NoticeUsed	Prefix	dpv
Label	Notice Used
IRI	https://w3id.org/dpv#NoticeUsed
Type	rdfs:Class, skos:Concept, dpv:NoticeStatus
Broader/Parent types	dpv:NoticeStatus → dpv:Status → dpv:Context
Object of relation	dpv:hasContext, dpv:hasNoticeStatus, dpv:hasStatus
Definition	Status indicating the notice has been communicated and has been used e.g. the recipient has acknowledged it or taken the intended action
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DPV

Notification

Term	Notification	Prefix	dpv
Label	Notification
IRI	https://w3id.org/dpv#Notification
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Notification represents the provision of a notice i.e. notifying
Usage Note	Notice refers to the information whereas Notification refers to the provision of that notice. The distinction is important as there are specific obligations associated with notice and notifications. For example, a data breach notice refers to the information about the breach intended to be provided to another entity, whereas notification refers to the act of providing the entity with the notice
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Operating System Security

Term	OperatingSystemSecurity	Prefix	dpv
Label	Operating System Security
IRI	https://w3id.org/dpv#OperatingSystemSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or through operating systems
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Oral Notice

Term	OralNotice	Prefix	dpv
Label	Oral Notice
IRI	https://w3id.org/dpv#OralNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice provided orally or verbally
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Organisational Measure

Term	OrganisationalMeasure	Prefix	dpv
Label	Organisational Measure
IRI	https://w3id.org/dpv#OrganisationalMeasure
Type	rdfs:Class, skos:Concept
Broader/Parent types	dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Organisational measures used to safeguard and ensure good practices in connection with data and technologies
Examples	`dex:E0021 ::` Using organisational measure: Indicating staff training for use of Credentials
Date Created	2019-04-05
Date Modified	2023-12-10
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM in DEX

Password Authentication

Term	PasswordAuthentication	Prefix	dpv
Label	Password Authentication
IRI	https://w3id.org/dpv#PasswordAuthentication
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of passwords to perform authentication
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Penetration Testing Methods

Term	PenetrationTestingMethods	Prefix	dpv
Label	Penetration Testing Methods
IRI	https://w3id.org/dpv#PenetrationTestingMethods
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of penetration testing to identify weaknesses and vulnerabilities through simulations
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Permission Management

Term	PermissionManagement	Prefix	dpv
Label	Permission Management
IRI	https://w3id.org/dpv#PermissionManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RightsManagement → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods to obtain, provide, modify, and withdraw permissions along with maintaining a record of permissions, retrieving records, and processing changes in permission states
Usage Note	Permission is a broader concept than '(Informed) Consent' as consent when used as a legal basis has specific requirements to be valid. For management of consent, see the concept dpv:ConsentManagement
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Personal Data Audit

Term	PersonalDataAudit	Prefix	dpv
Label	Personal Data Audit
IRI	https://w3id.org/dpv#PersonalDataAudit
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:InformationAudit → dpv:Audit → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An audit that systematically examines the existence and use of personal data along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared)
Usage Note	This concept is the same as "Data Mapping" and "Data Flow Mapping Exercise" used by the Information Comissioner's Office as "to document the data that flows in, around, and out of information processing systems or services"
Date Created	2024-12-17
Contributors	Paul Ryan, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Physical Access Control Method

Term	PhysicalAccessControlMethod	Prefix	dpv
Label	Physical Access Control Method
IRI	https://w3id.org/dpv#PhysicalAccessControlMethod
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:AccessControlMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Access control applied for physical access e.g. premises or equipment
Source
Date Created	2022-06-15
Contributors	Georg P. Krog
See More:	section TOM-PHYSICAL in DPV

Physical Authentication

Term	PhysicalAuthentication	Prefix	dpv
Label	Physical Authentication
IRI	https://w3id.org/dpv#PhysicalAuthentication
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical implementation of authentication e.g. by matching the person to their ID card
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Authorisation

Term	PhysicalAuthorisation	Prefix	dpv
Label	Physical Authorisation
IRI	https://w3id.org/dpv#PhysicalAuthorisation
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical implementation of authorisation e.g. by stamping a visitor pass
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Device Security

Term	PhysicalDeviceSecurity	Prefix	dpv
Label	Physical Device Security
IRI	https://w3id.org/dpv#PhysicalDeviceSecurity
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection for devices and equipment
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Interception Protection

Term	PhysicalInterceptionProtection	Prefix	dpv
Label	Physical Interception Protection
IRI	https://w3id.org/dpv#PhysicalInterceptionProtection
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection against interception e.g. by posting a guard
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Interruption Protection

Term	PhysicalInterruptionProtection	Prefix	dpv
Label	Physical Interruption Protection
IRI	https://w3id.org/dpv#PhysicalInterruptionProtection
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection against interruptions e.g. electrical supply interruption
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Measure

Term	PhysicalMeasure	Prefix	dpv
Label	Physical Measure
IRI	https://w3id.org/dpv#PhysicalMeasure
Type	rdfs:Class, skos:Concept
Broader/Parent types	dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical measures used to safeguard and ensure good practices in connection with data and technologies
Date Created	2023-12-10
Date Modified	2023-12-10
See More:	section TOM in DPV

Physical Network Security

Term	PhysicalNetworkSecurity	Prefix	dpv
Label	Physical Network Security
IRI	https://w3id.org/dpv#PhysicalNetworkSecurity
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection for networks and networking related infrastructure e.g. by isolating networking equipments
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Secure Storage

Term	PhysicalSecureStorage	Prefix	dpv
Label	Physical Secure Storage
IRI	https://w3id.org/dpv#PhysicalSecureStorage
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physical protection for storage of information or equipment e.g. secure storage for files
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Supply Security

Term	PhysicalSupplySecurity	Prefix	dpv
Label	Physical Supply Security
IRI	https://w3id.org/dpv#PhysicalSupplySecurity
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physically securing the supply of resources
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Physical Surveillance

Term	PhysicalSurveillance	Prefix	dpv
Label	Physical Surveillance
IRI	https://w3id.org/dpv#PhysicalSurveillance
Type	rdfs:Class, skos:Concept, dpv:PhysicalMeasure
Broader/Parent types	dpv:PhysicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasPhysicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Physically monitoring areas via surveillance
Source
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-PHYSICAL in DPV

Policy

Term	Policy	Prefix	dpv
Label	Policy
IRI	https://w3id.org/dpv#Policy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Subject of relation	dpv:isPolicyFor
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	A guidance document outlining any of: procedures, plans, principles, decisions, intent, or protocols.
Date Created	2021-09-08
Contributors	Paul Ryan, David Hickey, Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Posted Notice

Term	PostedNotice	Prefix	dpv
Label	Posted Notice
IRI	https://w3id.org/dpv#PostedNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that is posted as a sign or banner
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Post-Quantum Cryptography

Term	PostQuantumCryptography	Prefix	dpv
Label	Post-Quantum Cryptography
IRI	https://w3id.org/dpv#PostQuantumCryptography
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of algorithms that are intended to be secure against cryptanalytic attack by a quantum computer
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Principle

Term	Principle	Prefix	dpv
Label	Principle
IRI	https://w3id.org/dpv#Principle
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A representation of values or norms that must be taken into consideration when conducting activities
Date Created	2024-05-12
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Printed Notice

Term	PrintedNotice	Prefix	dpv
Label	Printed Notice
IRI	https://w3id.org/dpv#PrintedNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice that is provided in a printed form on or along with a device
Source	ICO - What methods can we use to provide privacy information?
Date Created	2024-08-17
See More:	section TOM-NOTICE in DPV

Privacy by Default

Term	PrivacyByDefault	Prefix	dpv
Label	Privacy by Default
IRI	https://w3id.org/dpv#PrivacyByDefault
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Practices regarding setting the default configurations of information and services to implement data protection and privacy (synonymous with Data Protection by Default)
Date Created	2019-04-05
Date Modified	2024-04-14
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Privacy by Design

Term	PrivacyByDesign	Prefix	dpv
Label	Privacy by Design
IRI	https://w3id.org/dpv#PrivacyByDesign
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Practices regarding incorporating data protection and privacy in the design of information and services (synonymous with Data Protection by Design)
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Privacy Notice

Term	PrivacyNotice	Prefix	dpv
Label	Privacy Notice
IRI	https://w3id.org/dpv#PrivacyNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Represents a notice or document outlining information regarding privacy
Examples	`dex:E0017 ::` Representing notice, provision, expiry, and withdrawal information for consent `dex:E0022 ::` Privacy Notice used in an activity
Date Created	2021-09-08
Contributors	Georg P. Krog, Paul Ryan, David Hickey, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DEX , section TOM-NOTICE in DEX

Privacy Preserving Protocol

Term	PrivacyPreservingProtocol	Prefix	dpv
Label	Privacy Preserving Protocol
IRI	https://w3id.org/dpv#PrivacyPreservingProtocol
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of protocols designed with the intention of provided additional guarantees regarding privacy
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Private Information Retrieval

Term	PrivateInformationRetrieval	Prefix	dpv
Label	Private Information Retrieval
IRI	https://w3id.org/dpv#PrivateInformationRetrieval
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods to retrieve a record from a system without revealing which record is retrieved
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Professional Training

Term	ProfessionalTraining	Prefix	dpv
Label	Professional Training
IRI	https://w3id.org/dpv#ProfessionalTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:StaffTraining → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Training methods that are intended to provide professional knowledge and expertise
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Pseudonymisation

Term	Pseudonymisation	Prefix	dpv
Label	Pseudonymisation
IRI	https://w3id.org/dpv#Pseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person;
Source	GDPR Art.4-5
Date Created	2019-04-05
Date Modified	2022-11-24
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar, Maya Borges, Damien Desfontaines
See More:	section TOM-TECHNICAL in DPV

Quantum Cryptography

Term	QuantumCryptography	Prefix	dpv
Label	Quantum Cryptography
IRI	https://w3id.org/dpv#QuantumCryptography
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Cryptographic methods that utilise quantum mechanical properties to perform cryptographic tasks
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Recertification Policy

Term	RecertificationPolicy	Prefix	dpv
Label	Recertification Policy
IRI	https://w3id.org/dpv#RecertificationPolicy
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Policy → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasPolicy, dpv:hasTechnicalOrganisationalMeasure
Definition	Policy regarding repetition or renewal of existing certification(s)
Date Created	2019-04-05
Date Modified	2024-04-14
See More:	section TOM-ORGANISATIONAL in DPV

Records of Activities

Term	RecordsOfActivities	Prefix	dpv
Label	Records of Activities
IRI	https://w3id.org/dpv#RecordsOfActivities
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	Records of activities within some context such as maintenance tasks or governance functions
Usage Note	Records can be any information associated with the activity e.g. logs, summaries.
Date Created	2021-09-08
Date Modified	2024-05-05
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-ORGANISATIONAL in DPV

Regulatory Sandbox

Term	RegulatorySandbox	Prefix	dpv
Label	Regulatory Sandbox
IRI	https://w3id.org/dpv#RegulatorySandbox
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Safeguard → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Mechanism used by regulators and businesses for gauging the compatibility of regulations and innovative products, particularly in the context of digitalisation, in a controlled real-world environment with appropriate safeguards in place
Source	EU Council Regulatory sandboxes and experimentation clauses as tools for better regulation
Date Created	2024-05-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Review Impact Assessment

Term	ReviewImpactAssessment	Prefix	dpv
Label	Review Impact Assessment
IRI	https://w3id.org/dpv#ReviewImpactAssessment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:ImpactAssessment → dpv:RiskAssessment → dpv:Assessment → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:ReviewProcedure → dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasAssessment, dpv:hasImpactAssessment, dpv:hasOrganisationalMeasure, dpv:hasRiskAssessment, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures to review impact assessments in terms of continued validity, adequacy for intended purposes, and conformance of processes with findings
Date Created	2022-10-22
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Review Procedure

Term	ReviewProcedure	Prefix	dpv
Label	Review Procedure
IRI	https://w3id.org/dpv#ReviewProcedure
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A procedure or process that reviews the correctness and validity of other procedures and policies e.g. to ensure continued validity, adequacy for intended purposes, and conformance of processes with findings
Date Created	2022-10-22
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

Rights Management

Term	RightsManagement	Prefix	dpv
Label	Rights Management
IRI	https://w3id.org/dpv#RightsManagement
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods associated with rights management where 'rights' refer to controlling who can do what with a resource
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-ORGANISATIONAL in DPV

RNG Pseudonymisation

Term	RNGPseudonymisation	Prefix	dpv
Label	RNG Pseudonymisation
IRI	https://w3id.org/dpv#RNGPseudonymisation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Pseudonymisation → dpv:Deidentification → dpv:DataSanitisationTechnique → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A pseudonymisation method where identifiers are substituted by a number chosen by a Random Number Generator (RNG)
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Date Modified	2022-10-13
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Records of Processing Activities

Term	ROPA	Prefix	dpv
Label	Records of Processing Activities
IRI	https://w3id.org/dpv#ROPA
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:DataProcessingRecord → dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	A Record of Processing Activities (ROPA) is a document detailing processing activities
Usage Note	ROPA under GDPR Art.30 has specific requirements regarding the information to be maintained. Additionally, Data Protection Authorities also provide additional information guidelines for information to be maintained in a ROPA. For more information see https://w3id.org/dpcat
Date Created	2021-09-08
Date Modified	2024-04-14
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-ORGANISATIONAL in DPV

Safeguard

Term	Safeguard	Prefix	dpv
Label	Safeguard
IRI	https://w3id.org/dpv#Safeguard
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A safeguard is a precautionary measure for the protection against or mitigation of negative effects
Usage Note	This concept is relevant given the requirement to assert safeguards in cross-border data transfers
Date Created	2021-09-22
Contributors	David Hickey, Paul Ryan, Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Safeguard for Data Transfer

Term	SafeguardForDataTransfer	Prefix	dpv
Label	Safeguard for Data Transfer
IRI	https://w3id.org/dpv#SafeguardForDataTransfer
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Safeguard → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Represents a safeguard used for data transfer. Can include technical or organisational measures.
Date Created	2021-09-22
Contributors	David Hickey, Paul Ryan, Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Seal

Term	Seal	Prefix	dpv
Label	Seal
IRI	https://w3id.org/dpv#Seal
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:CertificationSeal → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A seal or a mark indicating proof of certification to some certification or standard
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DPV

Secret Sharing Schemes

Term	SecretSharingSchemes	Prefix	dpv
Label	Secret Sharing Schemes
IRI	https://w3id.org/dpv#SecretSharingSchemes
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of secret sharing schemes where the secret can only be reconstructed through combination of sufficient number of individuals
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Secure Multi-Party Computation

Term	SecureMultiPartyComputation	Prefix	dpv
Label	Secure Multi-Party Computation
IRI	https://w3id.org/dpv#SecureMultiPartyComputation
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods for entities to jointly compute functions without revealing inputs
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Secure Processing Environment

Term	SecureProcessingEnvironment	Prefix	dpv
Label	Secure Processing Environment
IRI	https://w3id.org/dpv#SecureProcessingEnvironment
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A physical or virtual environment supported by organisational means that integrates security and compliance requirements and allows supervising data processing actions
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Audit

Term	SecurityAudit	Prefix	dpv
Label	Security Audit
IRI	https://w3id.org/dpv#SecurityAudit
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Audit → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An audit that systematically examines the existence and use of security risks and measures within information systems, networks, and security policies to identify vulnerabilities, risks, and gaps
Date Created	2024-12-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Incident Notice

Term	SecurityIncidentNotice	Prefix	dpv
Label	Security Incident Notice
IRI	https://w3id.org/dpv#SecurityIncidentNotice
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notice → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasNotice, dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	A notice providing information about security incident(s)
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV , section TOM-NOTICE in DPV

Security Incident Notification

Term	SecurityIncidentNotification	Prefix	dpv
Label	Security Incident Notification
IRI	https://w3id.org/dpv#SecurityIncidentNotification
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Notification → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Notification of information about security incident(s)
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Incident Record

Term	SecurityIncidentRecord	Prefix	dpv
Label	Security Incident Record
IRI	https://w3id.org/dpv#SecurityIncidentRecord
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:RecordsOfActivities → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasRecordOfActivity, dpv:hasTechnicalOrganisationalMeasure
Definition	Record of a security incident
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Knowledge Training

Term	SecurityKnowledgeTraining	Prefix	dpv
Label	Security Knowledge Training
IRI	https://w3id.org/dpv#SecurityKnowledgeTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:StaffTraining → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Training intended to increase knowledge regarding security
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Method

Term	SecurityMethod	Prefix	dpv
Label	Security Method
IRI	https://w3id.org/dpv#SecurityMethod
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods that relate to creating and providing security
Date Created	2022-08-24
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Security Procedure

Term	SecurityProcedure	Prefix	dpv
Label	Security Procedure
IRI	https://w3id.org/dpv#SecurityProcedure
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures associated with assessing, implementing, and evaluating security
Date Created	2022-08-24
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Security Role Procedures

Term	SecurityRoleProcedures	Prefix	dpv
Label	Security Role Procedures
IRI	https://w3id.org/dpv#SecurityRoleProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to security roles
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Single Sign On

Term	SingleSignOn	Prefix	dpv
Label	Single Sign On
IRI	https://w3id.org/dpv#SingleSignOn
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of credentials or processes that enable using one set of credentials to authenticate multiple contexts.
Date Created	2020-11-04
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan
See More:	section TOM-TECHNICAL in DPV

Staff Training

Term	StaffTraining	Prefix	dpv
Label	Staff Training
IRI	https://w3id.org/dpv#StaffTraining
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Practices and policies regarding training of staff members
Examples	`dex:E0021 ::` Using organisational measure: Indicating staff training for use of Credentials
Date Created	2019-04-05
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM-ORGANISATIONAL in DEX

Standard

Term	Standard	Prefix	dpv
Label	Standard
IRI	https://w3id.org/dpv#Standard
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Date Created	2024-12-01
Contributors	Delaram Golpayegani, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Standards Conformance

Term	StandardsConformance	Prefix	dpv
Label	Standards Conformance
IRI	https://w3id.org/dpv#StandardsConformance
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:GovernanceProcedures → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Purposes associated with activities undertaken to ensure or achieve conformance with standards
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Statistical Confidentiality Agreement

Term	StatisticalConfidentialityAgreement	Prefix	dpv
Label	Statistical Confidentiality Agreement
IRI	https://w3id.org/dpv#StatisticalConfidentialityAgreement
Type	rdfs:Class, skos:Concept, dpv:LegalMeasure
Broader/Parent types	dpv:LegalAgreement → dpv:LegalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasLegalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	An agreement outlining conditions, criteria, obligations, responsibilities, and specifics for classification and management of 'confidential data' based on a statistical framework
Date Created	2022-02-09
Date Modified	2024-08-27
See More:	section TOM-LEGAL in DPV

Support Contract Negotiation

Term	SupportContractNegotiation	Prefix	dpv
Label	Support Contract Negotiation
IRI	https://w3id.org/dpv#SupportContractNegotiation
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SupportEntityDecisionMaking → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Supporting entities, including individuals, with negotiating a contract and its terms and conditions
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Support Entity Decision Making

Term	SupportEntityDecisionMaking	Prefix	dpv
Label	Support Entity Decision Making
IRI	https://w3id.org/dpv#SupportEntityDecisionMaking
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Supporting entities, including individuals, in making decisions
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Support Exchange of Views

Term	SupportExchangeOfViews	Prefix	dpv
Label	Support Exchange of Views
IRI	https://w3id.org/dpv#SupportExchangeOfViews
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SupportEntityDecisionMaking → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Supporting individuals and entities in exchanging views e.g. regarding data processing purposes for their best interests
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Support Informed Consent Decision

Term	SupportInformedConsentDecision	Prefix	dpv
Label	Support Informed Consent Decision
IRI	https://w3id.org/dpv#SupportInformedConsentDecision
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SupportEntityDecisionMaking → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Supporting individuals with making a decision regarding their informed consent
Source
Date Created	2024-04-14
Contributors	Beatriz Esteves, Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Symmetric Cryptography

Term	SymmetricCryptography	Prefix	dpv
Label	Symmetric Cryptography
IRI	https://w3id.org/dpv#SymmetricCryptography
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptography where the same keys are utilised for encryption and decryption of information
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Symmetric Encryption

Term	SymmetricEncryption	Prefix	dpv
Label	Symmetric Encryption
IRI	https://w3id.org/dpv#SymmetricEncryption
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:Encryption → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of symmetric cryptography to encrypt data
Source	ENISA Data Pseudonymisation: Advanced Techniques and Use Cases
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Technical Measure

Term	TechnicalMeasure	Prefix	dpv
Label	Technical Measure
IRI	https://w3id.org/dpv#TechnicalMeasure
Type	rdfs:Class, skos:Concept
Broader/Parent types	dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Technical measures used to safeguard and ensure good practices in connection with data and technologies
Examples	`dex:E0020 ::` Using technical measure: Protecting data using encryption and access control `dex:E0064 ::` Indicating use of a technical measure and its implementation
Date Created	2019-04-05
Date Modified	2023-12-10
Contributors	Axel Polleres, Rob Brennan, Harshvardhan J. Pandit, Mark Lizar
See More:	section TOM in DEX

Technical and Organisational Measure

Term	TechnicalOrganisationalMeasure	Prefix	dpv
Label	Technical and Organisational Measure
IRI	https://w3id.org/dpv#TechnicalOrganisationalMeasure
Type	rdfs:Class, skos:Concept
Subject of relation	dpv:supportsComplianceWith
Object of relation	dpv:hasTechnicalOrganisationalMeasure
Definition	Technical and Organisational measures used to safeguard and ensure good practices in connection with data and technologies
Date Created	2019-04-05
Date Modified	2023-12-10
Contributors	Bud Bruegger
See More:	section TOM in DPV

Technical Standard

Term	TechnicalStandard	Prefix	dpv
Label	Technical Standard
IRI	https://w3id.org/dpv#TechnicalStandard
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:Standard → dpv:GuidelinesPrinciple → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Third Party Security Procedures

Term	ThirdPartySecurityProcedures	Prefix	dpv
Label	Third Party Security Procedures
IRI	https://w3id.org/dpv#ThirdPartySecurityProcedures
Type	rdfs:Class, skos:Concept, dpv:OrganisationalMeasure
Broader/Parent types	dpv:SecurityProcedure → dpv:OrganisationalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasOrganisationalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Procedures related to security associated with Third Parties
Source	ENISA 5G Cybersecurity Standards
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-ORGANISATIONAL in DPV

Trusted Computing

Term	TrustedComputing	Prefix	dpv
Label	Trusted Computing
IRI	https://w3id.org/dpv#TrustedComputing
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods to restrict access and execution to trusted parties and code
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Trusted Execution Environment

Term	TrustedExecutionEnvironment	Prefix	dpv
Label	Trusted Execution Environment
IRI	https://w3id.org/dpv#TrustedExecutionEnvironment
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of cryptographic methods to restrict access and execution to trusted parties and code within a dedicated execution environment
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Date Modified	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Usage Control

Term	UsageControl	Prefix	dpv
Label	Usage Control
IRI	https://w3id.org/dpv#UsageControl
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AccessControlMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Management of usage, which is intended to be broader than access control and may cover trust, digital rights, or other relevant controls
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Use of Synthetic Data

Term	UseSyntheticData	Prefix	dpv
Label	Use of Synthetic Data
IRI	https://w3id.org/dpv#UseSyntheticData
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Use of synthetic data to preserve privacy, security, or other effects and side-effects
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Virtualisation Security

Term	VirtualisationSecurity	Prefix	dpv
Label	Virtualisation Security
IRI	https://w3id.org/dpv#VirtualisationSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or through virtualised environments
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Vulnerability Testing Methods

Term	VulnerabilityTestingMethods	Prefix	dpv
Label	Vulnerability Testing Methods
IRI	https://w3id.org/dpv#VulnerabilityTestingMethods
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Methods that assess or discover vulnerabilities in a system
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

WebBrowser Security

Term	WebBrowserSecurity	Prefix	dpv
Label	WebBrowser Security
IRI	https://w3id.org/dpv#WebBrowserSecurity
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or over web browsers
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Web Security Protocols

Term	WebSecurityProtocols	Prefix	dpv
Label	Web Security Protocols
IRI	https://w3id.org/dpv#WebSecurityProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or over web-based protocols
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Wireless Security Protocols

Term	WirelessSecurityProtocols	Prefix	dpv
Label	Wireless Security Protocols
IRI	https://w3id.org/dpv#WirelessSecurityProtocols
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:SecurityMethod → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Security implemented at or over wireless communication protocols
Source	ENISA Reference Incident Classification Taxonomy 2018
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Zero Knowledge Authentication

Term	ZeroKnowledgeAuthentication	Prefix	dpv
Label	Zero Knowledge Authentication
IRI	https://w3id.org/dpv#ZeroKnowledgeAuthentication
Type	rdfs:Class, skos:Concept, dpv:TechnicalMeasure
Broader/Parent types	dpv:AuthenticationProtocols → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Broader/Parent types	dpv:CryptographicMethods → dpv:TechnicalMeasure → dpv:TechnicalOrganisationalMeasure
Object of relation	dpv:hasTechnicalMeasure, dpv:hasTechnicalOrganisationalMeasure
Definition	Authentication using Zero-Knowledge proofs
Source	ENISA Data Protection Engineering
Date Created	2022-08-17
Contributors	Harshvardhan J. Pandit
See More:	section TOM-TECHNICAL in DPV

Properties

has assessment

Term	hasAssessment	Prefix	dpv
Label	has assessment
IRI	https://w3id.org/dpv#hasAssessment
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasOrganisationalMeasure → dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasOrganisationalMeasure
Range includes	dpv:Assessment
Definition	Indicates a relevant assessment associated with the specific context
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

has entity control

Term	hasEntityControl	Prefix	dpv
Label	has entity control
IRI	https://w3id.org/dpv#hasEntityControl
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasTechnicalOrganisationalMeasure
Range includes	dpv:EntityControl
Definition	Indicates a control or measure provided for an entity to perform the specified action
Date Created	2024-04-14
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

has legal measure

Term	hasLegalMeasure	Prefix	dpv
Label	has legal measure
IRI	https://w3id.org/dpv#hasLegalMeasure
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasOrganisationalMeasure → dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasOrganisationalMeasure
Range includes	dpv:LegalMeasure
Definition	Indicates use or applicability of Legal measure
Date Created	2023-12-10
See More:	section TOM in DPV

has notice

Term	hasNotice	Prefix	dpv
Label	has notice
IRI	https://w3id.org/dpv#hasNotice
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasOrganisationalMeasure → dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasOrganisationalMeasure
Range includes	dpv:Notice
Definition	Indicates the use or applicability of a Notice for the specified context
Date Created	2022-06-22
Contributors	Georg P. Krog, Harshvardhan J. Pandit, Paul Ryan, Julian Flake
See More:	section TOM-NOTICE in DPV

has notice icon

Term	hasNoticeIcon	Prefix	dpv
Label	has notice icon
IRI	https://w3id.org/dpv#hasNoticeIcon
Type	rdf:Property, skos:Concept
Range includes	dpv:NoticeIcon
Definition	Indicates the concept can be represented graphically using the specified icon
Examples	`dex:E0072 ::` Using Notice Layer and Icon in a Consent Notice
Date Created	2024-08-17
See More:	section TOM-NOTICE in DEX

has notice layer

Term	hasNoticeLayer	Prefix	dpv
Label	has notice layer
IRI	https://w3id.org/dpv#hasNoticeLayer
Type	rdf:Property, skos:Concept
Domain includes	dpv:Notice , dpv:NoticeLayer
Range includes	dpv:NoticeLayer
Definition	Indicates the use of a notice layer within a notice or to associate a layer with another layer
Examples	`dex:E0072 ::` Using Notice Layer and Icon in a Consent Notice
Date Created	2024-08-17
See More:	section TOM-NOTICE in DEX

has notice status

Term	hasNoticeStatus	Prefix	dpv
Label	has notice status
IRI	https://w3id.org/dpv#hasNoticeStatus
Type	rdf:Property, skos:Concept
Domain includes	dpv:Notice
Range includes	dpv:NoticeStatus
Definition	Indicates the status of the associated notice
Examples	`dex:E0073 ::` Tracking the status of a Notice across its lifecycle
Date Created	2024-12-01
Contributors	Harshvardhan J. Pandit, Georg P. Krog
See More:	section TOM-NOTICE in DEX

has organisational measure

Term	hasOrganisationalMeasure	Prefix	dpv
Label	has organisational measure
IRI	https://w3id.org/dpv#hasOrganisationalMeasure
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasTechnicalOrganisationalMeasure
Range includes	dpv:OrganisationalMeasure
Definition	Indicates use or applicability of Organisational measure
Date Created	2022-02-09
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

has physical measure

Term	hasPhysicalMeasure	Prefix	dpv
Label	has physical measure
IRI	https://w3id.org/dpv#hasPhysicalMeasure
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasTechnicalOrganisationalMeasure
Range includes	dpv:PhysicalMeasure
Definition	Indicates use or applicability of Physical measure
Date Created	2023-12-10
See More:	section TOM in DPV

has policy

Term	hasPolicy	Prefix	dpv
Label	has policy
IRI	https://w3id.org/dpv#hasPolicy
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasTechnicalOrganisationalMeasure
Range includes	dpv:Policy
Definition	Indicates policy applicable or used
Date Created	2022-01-26
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

has record of activity

Term	hasRecordOfActivity	Prefix	dpv
Label	has record of activity
IRI	https://w3id.org/dpv#hasRecordOfActivity
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasOrganisationalMeasure → dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasOrganisationalMeasure
Range includes	dpv:RecordsOfActivities
Definition	Indicates a relevant record of activity
Date Created	2024-05-05
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

has technical measure

Term	hasTechnicalMeasure	Prefix	dpv
Label	has technical measure
IRI	https://w3id.org/dpv#hasTechnicalMeasure
Type	rdf:Property, skos:Concept
Broader/Parent types	dpv:hasTechnicalOrganisationalMeasure
Sub-property of	dpv:hasTechnicalOrganisationalMeasure
Range includes	dpv:TechnicalMeasure
Definition	Indicates use or applicability of Technical measure
Examples	`dex:E0064 ::` Indicating use of a technical measure and its implementation `dex:E0070 ::` Indicating personal data involved in an incident
Date Created	2022-02-09
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DEX

has technical and organisational measure

Term	hasTechnicalOrganisationalMeasure	Prefix	dpv
Label	has technical and organisational measure
IRI	https://w3id.org/dpv#hasTechnicalOrganisationalMeasure
Type	rdf:Property, skos:Concept
Range includes	dpv:TechnicalOrganisationalMeasure
Definition	Indicates use or applicability of Technical or Organisational measure
Date Created	2019-04-04
Date Modified	2020-11-04
Contributors	Axel Polleres, Javier Fernández, Harshvardhan J. Pandit, Mark Lizar, Bud Bruegger
See More:	section TOM in DPV

is policy for

Term	isPolicyFor	Prefix	dpv
Label	is policy for
IRI	https://w3id.org/dpv#isPolicyFor
Type	rdf:Property, skos:Concept
Domain includes	dpv:Policy
Definition	Indicates the context or application of policy
Date Created	2022-01-26
Contributors	Harshvardhan J. Pandit
See More:	section TOM in DPV

supports Compliance With

Term	supportsComplianceWith	Prefix	dpv
Label	supports Compliance With
IRI	https://w3id.org/dpv#supportsComplianceWith
Type	rdf:Property, skos:Concept
Domain includes	dpv:TechnicalOrganisationalMeasure
Definition	Indicate the measure is required for meeting specified requirement or satisfying specified condition/constraint
Date Created	2024-04-14
Contributors	Julian Flake, Georg P. Krog, Harshvardhan J. Pandit
See More:	section TOM in DPV

DPV uses the following terms from [[RDF]] and [[RDFS]] with their defined meanings:

rdf:type to denote a concept is an instance of another concept
rdfs:Class to denote a concept is a Class or a category
rdfs:subClassOf to specify the concept is a subclass (subtype, sub-category, subset) of another concept
rdf:Property to denote a concept is a property or a relation

The following external concepts are re-used within DPV:

DPV and Related Resources

Introduction

Technical Measures

Organisational Measures

Assessments

Notices

Notice Types

Notice Layer and Icons

Notice Statuses

Consent Notice

Policies

Record Keeping

Legal Measures

Physical Measures

Security

Data Processing Agreements

Data Transfer Safeguards

Vocabulary Index

Classes

Access Control Method

Activity Monitoring

AI Literacy

None

Anonymisation

Approval Procedure

Assessment

Asset Management Procedures

Asymmetric Cryptography

Asymmetric Encryption

Audit

Authentication using ABC

Authentication using PABC

Authentication Protocols

Authorisation Procedure

Authorisation Protocols

Background Checks

Biometric Authentication

Certification

Certification and Seal

Code of Conduct

Compliance Assessment

Compliance Monitoring

Confidentiality Agreement

Conformance Assessment

Consent Management

Consent Notice

Consent Receipt

Consent Record

Consultation

Consultation with Authority

Consultation with Data Subject

Consultation with Data Subject Representative

Consultation with DPO

Contractual Terms

Credential Management

Cryptographic Authentication

Cryptographic Key Management

Cryptographic Methods

Cybersecurity Training

Dashboard Notice

Data Backup Protocols

Data Breach Notice

Data Breach Notification

Data Breach Record

Data Deletion Policy

Data Erasure Policy

Data Governance

Data Handling Clause

Data Interoperability Assessment

Data Interoperability Improvement

Data Interoperability Management

Data Inventory Management

Data Jurisdiction Policy

Data Literacy

Data Processing Policy

Data Processing Record

Data Protection Training

Data Quality Assessment

Data Quality Improvement

Data Quality Management