Ontology-Based Privacy Compliance Checking for Clinical Workflows

Slide 1

Slide 1 text

Ontology-Based Privacy Compliance Checking for Clinical Workﬂows Saliha Irem BESIK [email protected] Supervisor: Prof. Johann-Christoph Freytag, Ph.D.

Slide 2

Slide 2 text

M O T I VAT I O N : P R I VA C Y B Y D E S I G N Design failures can be problematic… S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 2

Slide 3

Slide 3 text

M O T I VAT I O N : P R I VA C Y B Y D E S I G N GDPR says: Consider privacy at design phase… Design failures can be problematic… S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 2

Slide 4

Slide 4 text

M O T I VAT I O N : P R I VA C Y B Y D E S I G N GDPR says: Consider privacy at design phase… Design failures can be problematic… Good News: Business Processes might help! S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 2

Slide 5

Slide 5 text

M O T I VAT I N G E X A M P L E : N E W B O R N S C R E E N I N G S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 3

Slide 6

Slide 6 text

M O T I VAT I N G E X A M P L E : N E W B O R N S C R E E N I N G Desk demographic data S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 3

Slide 7

Slide 7 text

M O T I VAT I N G E X A M P L E : N E W B O R N S C R E E N I N G Pediatrician medical data Desk demographic data S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 3

Slide 8

Slide 8 text

M O T I VAT I N G E X A M P L E : N E W B O R N S C R E E N I N G Lab sensitive blood data Pediatrician medical data Desk demographic data S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 3

Slide 9

Slide 9 text

P R I VA C Y B Y D E S I G N V I A C L I N I C A L W O R K F L O W S S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 4

Slide 10

Slide 10 text

P R I VA C Y B Y D E S I G N V I A C L I N I C A L W O R K F L O W S Clinical Workflow includes a series of tasks for clinical services S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 4

Slide 11

Slide 11 text

P R I VA C Y B Y D E S I G N V I A C L I N I C A L W O R K F L O W S Clinical Workflow includes a series of tasks for clinical services also how tasks are performed, in what order, and by whom S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 4

Slide 12

Slide 12 text

R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5

Slide 13

Slide 13 text

R E S E A R C H P R O B L E M ? privacy-aware or not S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5

Slide 14

Slide 14 text

R E S E A R C H P R O B L E M ? privacy-aware or not S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 How to detect potential privacy violations on clinical WFs?

Slide 15

Slide 15 text

R E S E A R C H P R O B L E M ? privacy-aware or not Ontology-based reasoning approach S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 How to detect potential privacy violations on clinical WFs?

Slide 16

Slide 16 text

R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 ? privacy-aware or not How to define privacy-awareness for clinical WFs?

Slide 17

Slide 17 text

Privacy-aware WF is compliant with: R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 ? privacy-aware or not How to define privacy-awareness for clinical WFs?

Slide 18

Slide 18 text

Privacy-aware WF is compliant with: 1. privacy principles based on the General Data Protection Regulation (GDPR) R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 ? privacy-aware or not How to define privacy-awareness for clinical WFs?

Slide 19

Slide 19 text

Privacy-aware WF is compliant with: 1. privacy principles based on the General Data Protection Regulation (GDPR) 2. privacy policies by healthcare providers R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 ? privacy-aware or not How to define privacy-awareness for clinical WFs?

Slide 20

Slide 20 text

Privacy-aware WF is compliant with: 1. privacy principles based on the General Data Protection Regulation (GDPR) 2. privacy policies by healthcare providers 3. privacy preferences of data subjects (patients) R E S E A R C H P R O B L E M S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 5 ? privacy-aware or not How to define privacy-awareness for clinical WFs?

Slide 21

Slide 21 text

S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 6

Slide 22

Slide 22 text

S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 6

Slide 23

Slide 23 text

S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 6

Slide 24

Slide 24 text

S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 6

Slide 25

Slide 25 text

( 1 ) B U I L D O N T O L O G Y S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 7

Slide 26

Slide 26 text

( 1 ) B U I L D O N T O L O G Y semantically represent privacy concepts and BPMN-based clinical workflows S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 7

Slide 27

Slide 27 text

( 1 ) B U I L D O N T O L O G Y semantically represent privacy concepts and BPMN-based clinical workflows Privacy-aware Clinical Workflow (PaCW) Ontology S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 7

Slide 28

Slide 28 text

Slide 29

Slide 29 text

P R I VA C Y P R I N C I P L E S B A S E D O N G D P R S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 8

Slide 30

Slide 30 text

P R I VA C Y P R I N C I P L E S B A S E D O N G D P R • Purpose Specification: Personal data be collected for specified purposes S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 8

Slide 31

Slide 31 text

P R I VA C Y P R I N C I P L E S B A S E D O N G D P R • Purpose Specification: Personal data be collected for specified purposes • Consent Check: Data processing is lawful with an explicit consent of a data subject. (e.g. optional procedures like newborn screening) S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 8

Slide 32

Slide 32 text

P R I VA C Y P R I N C I P L E S B A S E D O N G D P R • Purpose Specification: Personal data be collected for specified purposes • Consent Check: Data processing is lawful with an explicit consent of a data subject. (e.g. optional procedures like newborn screening) • Limited Retention Period: Personal data be kept for no longer than is necessary S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 8

Slide 33

Slide 33 text

P R I VA C Y P R I N C I P L E S B A S E D O N G D P R • Purpose Specification: Personal data be collected for specified purposes • Consent Check: Data processing is lawful with an explicit consent of a data subject. (e.g. optional procedures like newborn screening) • Limited Retention Period: Personal data be kept for no longer than is necessary • Data Minimization: Personal data be limited to what is necessary S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 8

Slide 34

Slide 34 text

• what data is collected • who can use it for what purposes • the modality of data processing, whether it is obligatory or voluntary • how long it is retained P R I VA C Y P O L I C Y S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 9

Slide 35

Slide 35 text

Slide 36

Slide 36 text

• what data is collected • who can use it for what purposes • the modality of data processing, whether it is obligatory or voluntary • how long it is retained Data Minimization P R I VA C Y P O L I C Y S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 9

Slide 37

Slide 37 text

• what data is collected • who can use it for what purposes • the modality of data processing, whether it is obligatory or voluntary • how long it is retained Consent Data Minimization P R I VA C Y P O L I C Y S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 9

Slide 38

Slide 38 text

• what data is collected • who can use it for what purposes • the modality of data processing, whether it is obligatory or voluntary • how long it is retained Retention Consent Data Minimization P R I VA C Y P O L I C Y S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 9

Slide 39

Slide 39 text

Privacy Preference: expresses a data subject’s (patients) preferences on sharing / processing their personal data S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 10

Slide 40

Slide 40 text

( 1 ) I N T E G R AT E C O N C E P T S semantically represent privacy concepts and BPMN-based clinical workflows Privacy-aware Clinical Workflow (PaCW) Ontology S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 11

Slide 41

Slide 41 text

Slide 42

Slide 42 text

BPMN Core Elements Data Store Data Object Text Annotation Pool Lane Task Start Event End Event Exclusive Gateway Inclusive Gateway Parallel Gateway Sequence Flow Message Flow Data Association Association Clinical Workflow S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 12

Slide 43

Slide 43 text

BPMN Core Elements Data Store Data Object Text Annotation Pool Lane Task Start Event End Event Exclusive Gateway Inclusive Gateway Parallel Gateway Sequence Flow Message Flow Data Association Association Clinical Workflow + => Data Aware Workflow S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 12

Slide 44

Slide 44 text

Slide 45

Slide 45 text

BPMN Core Elements Data Store Data Object Text Annotation Pool Lane Task Start Event End Event Exclusive Gateway Inclusive Gateway Parallel Gateway Sequence Flow Message Flow Data Association Association Clinical Workflow + => Data Aware Workflow Data Annotation * Different types of Data Handling in BPMN are stated in [1] [1] Besik, Saliha Irem, and Johann-Christoph Freytag. "Ontology-Based Privacy Compliance Checking for Clinical Workflows." S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 12

Slide 46

Slide 46 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 47

Slide 47 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology starting point S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 48

Slide 48 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology ﬁrst version in OWL S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 49

Slide 49 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology ﬁrst version in OWL S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 50

Slide 50 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology Privacy Domain ﬁrst version in OWL S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 51

Slide 51 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology Privacy Domain ﬁrst version in OWL S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 52

Slide 52 text

Privacy-aware Clinical Workflow (PaCW) Ontology Clinical Workflow Domain Privacy Domain first version in OWL S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 13

Slide 53

Slide 53 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology PrivacyRule +purpose: Purpose PolicyRule PreferenceRule +dataSubject: DataSubject +user: User +data: Data +duration: String +condition: bool +status: bool Purpose +purposeName: String ConsentPolicy +requiresConsent: bool RetentionPolicy +data: Data +retention: String DataMinimizationPolicy +userRole: String +data: List +condition: bool DataSubject +dataSubjectName: String +prefList: List Data +dataName: String +dataCategory: String User +userName: String +userRole: String Legend: Directed Association Association Generalization recent version of Privacy Ontology in UML S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 14

Slide 54

Slide 54 text

Slide 55

Slide 55 text

Slide 56

Slide 56 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology Node Edge InteractionNode BaseElement +belongsTo(): Lane TextAnnotation +text: String Association +getSource(): BPMNElement +getTarget(): BPMNElement Task Event FlowNode Gateway BPMNData DataOperationTask +haveConsent(): bool StartEvent EndEvent Parallel DataObject DataStore Inclusive Exclusive BPMNElement SequenceFlow +getSource(): FlowNode +getTarget: FlowNode MessageFlow +getSource(): InteractionNode +getTarget(): InteractionNode DataInputAssociation +getSource(): BPMNData +getTarget(): DataOperationTask DataOutputAssociation +getSource(): DataOperationTask +getTarget(): BPMNData DataAssociation DataHandler +getAnnotation(): DataAnnotation Lane +userRole: String +belongsTo(): Pool BPMNModel +elementList: List Pool +userRole: String DataAnnotation +purpose: Purpose +data: List +hasPurpose(): bool +hasData(): bool adapted from [2] Natschläger, Christine. "Towards a BPMN 2.0 ontology." International Workshop on Business Process Modeling Notation. Springer, Berlin, Heidelberg, 2011. recent version of BPMN Ontology in UML S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 15

Slide 57

Slide 57 text

Slide 58

Slide 58 text

Slide 59

Slide 59 text

Slide 60

Slide 60 text

Slide 61

Slide 61 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology PrivacyRule + ruleId: int + user: User + data: Data + purpose: String User + userId: int + userRole: String Data + dataId: int + dataCategory: String + retention: String PrivacyPolicy + condition: bool PrivacyPreference + consentStatus: bool Privacy Domain S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 16

Slide 62

Slide 62 text

Slide 63

Slide 63 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology PrivacyRule + ruleId: int + user: User + data: Data + purpose: String User + userId: int + userRole: String Data + dataId: int + dataCategory: String + retention: String PrivacyPolicy + condition: bool PrivacyPreference + consentStatus: bool Privacy Domain Data Object Data Store User Pool Lane Mapping Data Text Annotation Purpose S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 16

Slide 64

Slide 64 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology PrivacyRule + ruleId: int + user: User + data: Data + purpose: String User + userId: int + userRole: String Data + dataId: int + dataCategory: String + retention: String PrivacyPolicy + condition: bool PrivacyPreference + consentStatus: bool Privacy Domain Data Object Data Store User Pool Lane Mapping Data Text Annotation Purpose * Message Flow as ‘Data’ is omitted. S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 16

Slide 65

Slide 65 text

PrivacyRule +purpose: Purpose PolicyRule PreferenceRule +dataSubject: DataSubject +user: User +data: Data +duration: String +condition: bool +status: bool Purpose +purposeName: String ConsentPolicy +requiresConsent: bool RetentionPolicy +data: Data +retention: String DataMinimizationPolicy +userRole: String +data: List +condition: bool DataSubject +dataSubjectName: String +prefList: List Data +dataName: String +dataCategory: String User +userName: String +userRole: String Legend: Directed Association Association Generalization Privacy-aware Clinical Workﬂow (PaCW) Ontology (1) create Java Classes for each UML ontology class* Ω *Eclipse UML Generators is used: https://www.eclipse.org/umlgen/ S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 17

Slide 66

Slide 66 text

Slide 67

Slide 67 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology (1) create Java Classes for each UML ontology class* Ω PrivacyRule +purpose: Purpose PolicyRule ConsentPolicy +requiresConsent: bool *Eclipse UML Generators is used: https://www.eclipse.org/umlgen/ S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 17

Slide 68

Slide 68 text

Slide 69

Slide 69 text

Privacy-aware Clinical Workﬂow (PaCW) Ontology (1) create Java Classes for each UML ontology class* Ω public class ConsentPolicy extends PolicyRule { private boolean requiresConsent; /* getter and setter functions*/ // Constructor public ConsentPolicy(Purpose p, boolean requiresConsent{ super (p); this.requiresConsent = requiresConsent; }} PrivacyRule +purpose: Purpose PolicyRule ConsentPolicy +requiresConsent: bool *Eclipse UML Generators is used: https://www.eclipse.org/umlgen/ S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 17

Slide 70

Slide 70 text

( 2 ) F O R M A L I Z E P R I VA C Y R U L E S S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 18

Slide 71

Slide 71 text

( 2 ) F O R M A L I Z E P R I VA C Y R U L E S Policy Preference Privacy Rule Consent Data Minimization Retention S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 18

Slide 72

Slide 72 text

Slide 73

Slide 73 text

Slide 74

Slide 74 text

( 2 ) F O R M A L I Z E P R I VA C Y R U L E S Policy Preference Privacy Rule Consent Data Minimization Retention PR1: An explicit consent is required for newborn hearing screening. PR2: A pediatrician access the result of the examination only if the result is abnormal. PR3: A hospital can save results for the purpose of hearing screening with a retention limit by 3 years. PR4: Alice consents only pediatrician Bob can perform hearing screening for 6 months on Oct 1, 2019. * All formal definitions for the compliance checks are in [3] [3] Besik, Saliha Irem, and Johann-Christoph Freytag. "A formal approach to build privacy-awareness into clinical workflows." SICS Software-Intensive Cyber-Physical Systems (2019): 1-12. S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 18

Slide 75

Slide 75 text

(2) create PrivacyRuleInstances Ω PR1: An explicit consent is required for newborn hearing screening. S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 19

Slide 76

Slide 76 text

(2) create PrivacyRuleInstances Ω public class PrivacyRuleInstances{ ConsentPolicy p1 = new ConsentPolicy (new Purpose(“hearing-screening"), true);} PR1: An explicit consent is required for newborn hearing screening. S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 19

Slide 77

Slide 77 text

( 3 ) C H E C K P R I VA C Y C O M P L I A N C E S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 20

Slide 78

Slide 78 text

( 3 ) C H E C K P R I VA C Y C O M P L I A N C E (1) create Java Classes for each UML ontology class S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 20

Slide 79

Slide 79 text

( 3 ) C H E C K P R I VA C Y C O M P L I A N C E (1) create Java Classes for each UML ontology class (2) create PrivacyRuleInstances S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 20

Slide 80

Slide 80 text

( 3 ) C H E C K P R I VA C Y C O M P L I A N C E (1) create Java Classes for each UML ontology class (2) create PrivacyRuleInstances (3) create BPMNModel Instance S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 20

Slide 81

Slide 81 text

( 3 ) C H E C K P R I VA C Y C O M P L I A N C E (1) create Java Classes for each UML ontology class (2) create PrivacyRuleInstances (4) execute Reasoner (3) create BPMNModel Instance S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 20

Slide 82

Slide 82 text

(3) create BPMNModel Instance Ω - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 83

Slide 83 text

(3) create BPMNModel Instance Ω Node Edge InteractionNode BaseElement +belongsTo(): Lane TextAnnotation +text: String Association +getSource(): BPMNElement +getTarget(): BPMNElement Task Event FlowNode Gateway BPMNData DataOperationTask +haveConsent(): bool StartEvent EndEvent Parallel DataObject DataStore Inclusive Exclusive BPMNElement SequenceFlow +getSource(): FlowNode +getTarget: FlowNode MessageFlow +getSource(): InteractionNode +getTarget(): InteractionNode DataInputAssociation +getSource(): BPMNData +getTarget(): DataOperationTask DataOutputAssociation +getSource(): DataOperationTask +getTarget(): BPMNData DataAssociation DataHandler +getAnnotation(): DataAnnotation Lane +userRole: String +belongsTo(): Pool BPMNModel +elementList: List Pool +userRole: String DataAnnotation +purpose: Purpose +data: List +hasPurpose(): bool +hasData(): bool - Create a BPMNModel Instance - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 84

Slide 84 text

Slide 85

Slide 85 text

(3) create BPMNModel Instance Ω - Create a BPMNModel Instance - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ pediatrician HIS d:result, p:hear screening perform hearing screening newborn arrives S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 86

Slide 86 text

(3) create BPMNModel Instance Ω - Create a BPMNModel Instance - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ pediatrician HIS d:result, p:hear screening perform hearing screening newborn arrives lane S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 87

Slide 87 text

(3) create BPMNModel Instance Ω - Create a BPMNModel Instance - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ pediatrician HIS d:result, p:hear screening perform hearing screening newborn arrives DataHandler lane S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 88

Slide 88 text

(3) create BPMNModel Instance Ω - Create a BPMNModel Instance - Parse Clinical Workflow* *Camunda BPMN Model API is used: https://docs.camunda.org/manual/7.7/user-guide/model-api/bpmn-model-api/ pediatrician HIS d:result, p:hear screening perform hearing screening newborn arrives DataHandler DataAnnotation lane S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 21

Slide 89

Slide 89 text

(4) execute Reasoner Ω - Create Drools Rules for Compliance Check S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 22

Slide 90

Slide 90 text

(4) execute Reasoner Ω - Create Drools Rules for Compliance Check rule "Purpose-Specification-Check" when BPMNModel.DataHandler(!hasDataAnnotation() || !dataAnnotation.hasPurpose()) then System.out.println("Compliance Check fail: Purpose-Specification"); end S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 22

Slide 91

Slide 91 text

(4) execute Reasoner Ω pediatrician HIS perform hearing screening newborn arrives rule "Purpose-Specification-Check" when BPMNModel.DataHandler(!hasDataAnnotation() || !dataAnnotation.hasPurpose()) then System.out.println("Compliance Check fail: Purpose-Specification"); end S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 22

Slide 92

Slide 92 text

Slide 93

Slide 93 text

Slide 94

Slide 94 text

(4) execute Reasoner Ω pediatrician HIS perform hearing screening newborn arrives rule "Purpose-Specification-Check" when BPMNModel.DataHandler(!hasDataAnnotation() || !dataAnnotation.hasPurpose()) then System.out.println("Compliance Check fail: Purpose-Specification"); end No DataAnnotation returns Check fail Message S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 22

Slide 95

Slide 95 text

S U M M A RY S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 23

Slide 96

Slide 96 text

F U T U R E W O R K S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 24

Slide 97

Slide 97 text

F U T U R E W O R K • Providing corrective actions to fix the privacy violations S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 24

Slide 98

Slide 98 text

F U T U R E W O R K • Providing corrective actions to fix the privacy violations • Transforming non-privacy-aware workflow into a privacy-aware workflow S.I. Besik, Ontology-Based Privacy Compliance Checking for Clinical Workflows, October 1, ’19 / 24 24

Slide 99

Slide 99 text

THANK YOU! QUESTIONS?? Slides at https:/ /irem.dev