Privacy and Data Protection for Big Data - why Con dentiality, Integrity, and Availability are not sufficient

Big Data is promising solutions for business, administration, and society. But how can it be reconciled with the requirements of privacy and data protection? The established protection goals from information security – con dentiality, integrity, and availability – do not provide appropriate guidance for developers, operators, and users. Remedy may be achieved by shifting the perspective and employing additional privacy protection goals: unlinkability, transparency, and intervenability. This method can serve as foundation for Data Protection Assessments that are demanded by the upcoming European General Data Protection Regulation to minimize risks for people’s privacy and to ensure compliance for companies.