{"id":"https://openalex.org/W3165431244","doi":"https://doi.org/10.1145/3450965","title":"Privacy Laws and Privacy by Design Schemes for the Internet of Things","display_name":"Privacy Laws and Privacy by Design Schemes for the Internet of Things","publication_year":2021,"publication_date":"2021-05-25","ids":{"openalex":"https://openalex.org/W3165431244","doi":"https://doi.org/10.1145/3450965","mag":"3165431244"},"language":"en","primary_location":{"id":"doi:10.1145/3450965","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3450965","pdf_url":null,"source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},"type":"review","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://napier-surface.worktribe.com/2776625/1/Privacy%20Laws%20And%20Privacy%20By%20Design%20Schemes%20For%20The%20Internet%20Of%20Things%3A%20A%20Developer%E2%80%99s%20Perspective%20%28accepted%20version%29","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5002139912","display_name":"Atheer Aljeraisy","orcid":"https://orcid.org/0000-0002-2313-0356"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Atheer Aljeraisy","raw_affiliation_strings":["Cardiff University, UK"],"affiliations":[{"raw_affiliation_string":"Cardiff University, UK","institution_ids":["https://openalex.org/I79510175"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005882626","display_name":"Masoud Barati","orcid":"https://orcid.org/0000-0001-7829-2240"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Masoud Barati","raw_affiliation_strings":["Cardiff University, UK"],"affiliations":[{"raw_affiliation_string":"Cardiff University, UK","institution_ids":["https://openalex.org/I79510175"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021973291","display_name":"Omer Rana","orcid":"https://orcid.org/0000-0003-3597-2646"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Omer Rana","raw_affiliation_strings":["Cardiff University, UK"],"affiliations":[{"raw_affiliation_string":"Cardiff University, UK","institution_ids":["https://openalex.org/I79510175"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5060972706","display_name":"Charith Perera","orcid":"https://orcid.org/0000-0002-0190-3346"},"institutions":[{"id":"https://openalex.org/I79510175","display_name":"Cardiff University","ror":"https://ror.org/03kk7td41","country_code":"GB","type":"education","lineage":["https://openalex.org/I79510175"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Charith Perera","raw_affiliation_strings":["Cardiff University, UK"],"affiliations":[{"raw_affiliation_string":"Cardiff University, UK","institution_ids":["https://openalex.org/I79510175"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5002139912"],"corresponding_institution_ids":["https://openalex.org/I79510175"],"apc_list":null,"apc_paid":null,"fwci":13.0669,"has_fulltext":false,"cited_by_count":81,"citation_normalized_percentile":{"value":0.98640228,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":"54","issue":"5","first_page":"1","last_page":"38"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11704","display_name":"Mobile Crowdsensing and Crowdsourcing","score":0.9768999814987183,"subfield":{"id":"https://openalex.org/subfields/1706","display_name":"Computer Science Applications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7592781782150269},{"id":"https://openalex.org/keywords/privacy-by-design","display_name":"Privacy by Design","score":0.7408007383346558},{"id":"https://openalex.org/keywords/privacy-software","display_name":"Privacy software","score":0.6827069520950317},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.6439518332481384},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.622258722782135},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5855798125267029},{"id":"https://openalex.org/keywords/personally-identifiable-information","display_name":"Personally identifiable information","score":0.5681254267692566},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5519407391548157},{"id":"https://openalex.org/keywords/privacy-law","display_name":"Privacy law","score":0.5411682724952698},{"id":"https://openalex.org/keywords/due-diligence","display_name":"Due diligence","score":0.5074471831321716},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5015659332275391},{"id":"https://openalex.org/keywords/privacy-policy","display_name":"Privacy policy","score":0.48600658774375916},{"id":"https://openalex.org/keywords/data-protection-act-1998","display_name":"Data Protection Act 1998","score":0.4509885907173157},{"id":"https://openalex.org/keywords/information-privacy-law","display_name":"Information privacy law","score":0.43896088004112244},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.26146626472473145},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.20628970861434937},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.11230424046516418}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7592781782150269},{"id":"https://openalex.org/C193934123","wikidata":"https://www.wikidata.org/wiki/Q7246028","display_name":"Privacy by Design","level":3,"score":0.7408007383346558},{"id":"https://openalex.org/C509729295","wikidata":"https://www.wikidata.org/wiki/Q7246032","display_name":"Privacy software","level":3,"score":0.6827069520950317},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.6439518332481384},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.622258722782135},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5855798125267029},{"id":"https://openalex.org/C169093310","wikidata":"https://www.wikidata.org/wiki/Q3702971","display_name":"Personally identifiable information","level":2,"score":0.5681254267692566},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5519407391548157},{"id":"https://openalex.org/C141972696","wikidata":"https://www.wikidata.org/wiki/Q1247836","display_name":"Privacy law","level":4,"score":0.5411682724952698},{"id":"https://openalex.org/C2781016034","wikidata":"https://www.wikidata.org/wiki/Q794134","display_name":"Due diligence","level":2,"score":0.5074471831321716},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5015659332275391},{"id":"https://openalex.org/C102938260","wikidata":"https://www.wikidata.org/wiki/Q1999831","display_name":"Privacy policy","level":3,"score":0.48600658774375916},{"id":"https://openalex.org/C69360830","wikidata":"https://www.wikidata.org/wiki/Q1172237","display_name":"Data Protection Act 1998","level":2,"score":0.4509885907173157},{"id":"https://openalex.org/C78524284","wikidata":"https://www.wikidata.org/wiki/Q6031155","display_name":"Information privacy law","level":4,"score":0.43896088004112244},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.26146626472473145},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.20628970861434937},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.11230424046516418}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1145/3450965","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3450965","pdf_url":null,"source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},{"id":"pmh:oai:https://orca.cardiff.ac.uk:139754","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306401195","display_name":"ORCA Online Research @Cardiff (Cardiff University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79510175","host_organization_name":"Cardiff University","host_organization_lineage":["https://openalex.org/I79510175"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"PeerReviewed"},{"id":"pmh:oai:http://orca-dev.cardiff.ac.uk:139754","is_oa":false,"landing_page_url":"https://orca.cardiff.ac.uk/id/eprint/139754/","pdf_url":null,"source":{"id":"https://openalex.org/S4306401195","display_name":"ORCA Online Research @Cardiff (Cardiff University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79510175","host_organization_name":"Cardiff University","host_organization_lineage":["https://openalex.org/I79510175"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Article"},{"id":"pmh:oai:napier-surface.worktribe.com:2776625","is_oa":true,"landing_page_url":"https://napier-surface.worktribe.com/2776625/1/Privacy%20Laws%20And%20Privacy%20By%20Design%20Schemes%20For%20The%20Internet%20Of%20Things%3A%20A%20Developer%E2%80%99s%20Perspective%20%28accepted%20version%29","pdf_url":null,"source":{"id":"https://openalex.org/S4306400544","display_name":"Research Output (Edinburgh Napier University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I251738","host_organization_name":"Edinburgh Napier University","host_organization_lineage":["https://openalex.org/I251738"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Article"},{"id":"pmh:oai:repository@napier.ac.uk:2776625","is_oa":true,"landing_page_url":"http://researchrepository.napier.ac.uk/Output/2776625","pdf_url":null,"source":{"id":"https://openalex.org/S4306402591","display_name":"Edinburgh Napier Research Repository (Edinburgh Napier University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I251738","host_organization_name":"Edinburgh Napier University","host_organization_lineage":["https://openalex.org/I251738"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"acceptedVersion"}],"best_oa_location":{"id":"pmh:oai:napier-surface.worktribe.com:2776625","is_oa":true,"landing_page_url":"https://napier-surface.worktribe.com/2776625/1/Privacy%20Laws%20And%20Privacy%20By%20Design%20Schemes%20For%20The%20Internet%20Of%20Things%3A%20A%20Developer%E2%80%99s%20Perspective%20%28accepted%20version%29","pdf_url":null,"source":{"id":"https://openalex.org/S4306400544","display_name":"Research Output (Edinburgh Napier University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I251738","host_organization_name":"Edinburgh Napier University","host_organization_lineage":["https://openalex.org/I251738"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Article"},"sustainable_development_goals":[{"score":0.7400000095367432,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G6864186609","display_name":null,"funder_award_id":"EP/R033439/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G7846730872","display_name":null,"funder_award_id":"EP/S018263/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":40,"referenced_works":["https://openalex.org/W93928388","https://openalex.org/W338697544","https://openalex.org/W1530010412","https://openalex.org/W1988356170","https://openalex.org/W1992331124","https://openalex.org/W2003544295","https://openalex.org/W2023058619","https://openalex.org/W2023923675","https://openalex.org/W2032233621","https://openalex.org/W2044783750","https://openalex.org/W2061604051","https://openalex.org/W2068849277","https://openalex.org/W2069101457","https://openalex.org/W2071871478","https://openalex.org/W2095479635","https://openalex.org/W2111619626","https://openalex.org/W2113738519","https://openalex.org/W2133160781","https://openalex.org/W2133471882","https://openalex.org/W2139073230","https://openalex.org/W2155404021","https://openalex.org/W2163359022","https://openalex.org/W2514016858","https://openalex.org/W2524314898","https://openalex.org/W2528964818","https://openalex.org/W2585818648","https://openalex.org/W2608457654","https://openalex.org/W2740393752","https://openalex.org/W2741756174","https://openalex.org/W2859512197","https://openalex.org/W2895782836","https://openalex.org/W2908104737","https://openalex.org/W2976100997","https://openalex.org/W2979470497","https://openalex.org/W3017580336","https://openalex.org/W3104413100","https://openalex.org/W3122732478","https://openalex.org/W3200037249","https://openalex.org/W4254194321","https://openalex.org/W6722818980"],"related_works":["https://openalex.org/W576625533","https://openalex.org/W1598195095","https://openalex.org/W2470776051","https://openalex.org/W2549995367","https://openalex.org/W1535304801","https://openalex.org/W2798190008","https://openalex.org/W2940702331","https://openalex.org/W120234558","https://openalex.org/W3122237075","https://openalex.org/W3123372480"],"abstract_inverted_index":{"Internet":[0],"of":[1,88,144,183,237],"Things":[2],"applications":[3],"have":[4,83,215,232,243,276],"the":[5,28,89,108,117,153,161,177,184,208,228,235,245,258,293],"potential":[6,253],"to":[7,19,27,72,139,155,160,206,218,256],"derive":[8],"sensitive":[9],"information":[10],"about":[11],"individuals.":[12],"Therefore,":[13],"developers":[14,50,157,262],"must":[15],"exercise":[16],"due":[17],"diligence":[18],"make":[20],"sure":[21],"that":[22,49,95,248,267,283],"data":[23,32,92,148,272],"are":[24,66,96],"managed":[25],"according":[26],"privacy":[29,90,146,195,222,270],"regulations":[30,65,162],"and":[31,42,68,74,91,112,126,147,151,180,199,220,231,252,271,295,300],"protection":[33,93,149,273],"laws.":[34,274],"However,":[35],"doing":[36,238],"so":[37],"can":[38],"be":[39,70,250],"a":[40,85,141,169,278],"difficult":[41],"challenging":[43,71],"task.":[44],"Recent":[45],"research":[46,254],"has":[47],"revealed":[48],"typically":[51],"face":[52],"difficulties":[53],"when":[54,263],"complying":[55],"with":[56,167,188,269],"regulations.":[57],"One":[58],"key":[59,178],"reason":[60],"is":[61],"that,":[62,176],"at":[63,227],"times,":[64],"vague":[67],"could":[69],"extract":[73],"enact":[75],"such":[76,239],"legal":[77],"requirements.":[78],"In":[79],"this":[80],"article,":[81],"we":[82,134,214,242,291],"conducted":[84],"systematic":[86],"analysis":[87,137],"laws":[94,150],"used":[97,135],"across":[98,163],"different":[99,145,164,204],"continents,":[100],"namely":[101],"(i)":[102],"General":[103],"Data":[104],"Protection":[105,111],"Regulations,":[106],"(ii)":[107],"Personal":[109],"Information":[110],"Electronic":[113],"Documents":[114],"Act,":[115,121],"(iii)":[116],"California":[118],"Consumer":[119],"Privacy":[120,124,130,171,189],"(iv)":[122],"Australian":[123],"Principles,":[125],"(v)":[127],"New":[128],"Zealand\u2019s":[129],"Act":[131],"1993.":[132],"Then,":[133],"framework":[136],"method":[138],"attain":[140],"comprehensive":[142],"view":[143],"highlighted":[152,234],"disparities":[154],"assist":[156],"in":[158,210],"adhering":[159],"regions,":[165],"along":[166],"creating":[168],"Combined":[170],"Law":[172],"Framework":[173],"(CPLF).":[174],"After":[175],"principles":[179],"individuals\u2019":[181],"rights":[182],"CPLF":[185,299],"were":[186],"mapped":[187],"by":[190,203],"Design":[191],"(PbD)":[192],"schemes":[193],"(e.g.,":[194],"principles,":[196],"strategies,":[197],"guidelines,":[198],"patterns)":[200],"developed":[201,292],"previously":[202],"researchers":[205],"investigate":[207],"gaps":[209],"existing":[211],"schemes.":[212,302],"Subsequently,":[213],"demonstrated":[216],"how":[217,290],"apply":[219],"map":[221],"patterns":[223],"into":[224],"IoT":[225],"architectures":[226],"design":[229],"stage":[230],"also":[233],"complexity":[236],"mapping.":[240],"Finally,":[241],"identified":[244],"major":[246],"challenges":[247],"should":[249],"addressed":[251],"directions":[255],"take":[257],"burden":[259],"off":[260],"software":[261],"applying":[264],"privacy-preserving":[265],"techniques":[266],"comply":[268],"We":[275],"released":[277],"companion":[279],"technical":[280],"report":[281],"[3]":[282],"comprises":[284],"all":[285],"definitions,":[286],"detailed":[287,296],"steps":[288],"on":[289],"CPLF,":[294],"mappings":[297],"between":[298],"PbD":[301]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":41},{"year":2024,"cited_by_count":20},{"year":2023,"cited_by_count":9},{"year":2022,"cited_by_count":6},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}