Open Access iconOpen Access

ARTICLE

crossmark

Enhancing AI System Privacy: An Automatic Tool for Achieving GDPR Compliance in NoSQL Databases

Yifei Zhao, Zhaohui Li, Siyi Lv*

College of Cyber Science, Nankai University, Tianjin, 300350, China

* Corresponding Author: Siyi Lv. Email: email

(This article belongs to the Special Issue: Security, Privacy, and Robustness for Trustworthy AI Systems)

Computers, Materials & Continua 2024, 80(1), 217-234. https://doi.org/10.32604/cmc.2024.052310

Abstract

The EU’s Artificial Intelligence Act (AI Act) imposes requirements for the privacy compliance of AI systems. AI systems must comply with privacy laws such as the GDPR when providing services. These laws provide users with the right to issue a Data Subject Access Request (DSAR). Responding to such requests requires database administrators to identify information related to an individual accurately. However, manual compliance poses significant challenges and is error-prone. Database administrators need to write queries through time-consuming labor. The demand for large amounts of data by AI systems has driven the development of NoSQL databases. Due to the flexible schema of NoSQL databases, identifying personal information becomes even more challenging. This paper develops an automated tool to identify personal information that can help organizations respond to DSAR. Our tool employs a combination of various technologies, including schema extraction of NoSQL databases and relationship identification from query logs. We describe the algorithm used by our tool, detailing how it discovers and extracts implicit relationships from NoSQL databases and generates relationship graphs to help developers accurately identify personal data. We evaluate our tool on three datasets, covering different database designs, achieving an F1 score of 0.77 to 1. Experimental results demonstrate that our tool successfully identifies information relevant to the data subject. Our tool reduces manual effort and simplifies GDPR compliance, showing practical application value in enhancing the privacy performance of NOSQL databases and AI systems.

Keywords


Cite This Article

APA Style
Zhao, Y., Li, Z., Lv, S. (2024). Enhancing AI system privacy: an automatic tool for achieving GDPR compliance in nosql databases. Computers, Materials & Continua, 80(1), 217-234. https://doi.org/10.32604/cmc.2024.052310
Vancouver Style
Zhao Y, Li Z, Lv S. Enhancing AI system privacy: an automatic tool for achieving GDPR compliance in nosql databases. Comput Mater Contin. 2024;80(1):217-234 https://doi.org/10.32604/cmc.2024.052310
IEEE Style
Y. Zhao, Z. Li, and S. Lv, “Enhancing AI System Privacy: An Automatic Tool for Achieving GDPR Compliance in NoSQL Databases,” Comput. Mater. Contin., vol. 80, no. 1, pp. 217-234, 2024. https://doi.org/10.32604/cmc.2024.052310



cc Copyright © 2024 The Author(s). Published by Tech Science Press.
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
  • 590

    View

  • 297

    Download

  • 0

    Like

Share Link