O4.3 Ensure secure and auditable data handling

Principle

O4: Assure data security by design

Risk

RS2 Digital insecurity, RS1 Privacy vulnerability, SV4 Technical shortcomings

Life Cycle Stage

L2: Strategy & Design

Practices

• Adopt a federated and decentralized architecture to enhance privacy and resilience by distributing data and control.

• Utilize tokenization and data masking, implement granular electronic consent frameworks, enforce end-to-end encryption, and employ digital signatures and verifiable credentials to ensure robust, auditable, and trustworthy data management and transactions.

Resources

References

CDPI (N/d). DPI Tech Architecture Principles. Centre for Digital Public Infrastructure. https://docs.cdpi.dev/the-dpi-wikipedia/dpi-tech-architecture-principles