Adds dpv:InformationAudit; closes #202

- adds `dpv:InformationAudit` to Organisational Measures in DPV - adds `dpv:Audit` as the parent concept - adds `dpv:SecurityAudit` and `dpv:LegalComplianeAudit` as audit types Co-authored-by: Paul Ryan <[email protected]>
w3c · Dec 21, 2024 · a01b4ce · a01b4ce
1 parent 9fc8344
commit a01b4ce
Show file tree

Hide file tree

Showing 28 changed files with 62,179 additions and 56,742 deletions.
diff --git a/2.1-dev/dpv/dpv-en.html b/2.1-dev/dpv/dpv-en.html
diff --git a/2.1-dev/dpv/dpv-owl.html b/2.1-dev/dpv/dpv-owl.html
diff --git a/2.1-dev/dpv/dpv-owl.jsonld b/2.1-dev/dpv/dpv-owl.jsonld
diff --git a/2.1-dev/dpv/dpv-owl.n3 b/2.1-dev/dpv/dpv-owl.n3
@@ -536,6 +536,17 @@ dpv-owl:AsymmetricEncryption a rdfs:Class,
     skos:definition "Use of asymmetric cryptography to encrypt data"@en ;
     skos:prefLabel "Asymmetric Encryption"@en .
 
+dpv-owl:Audit a rdfs:Class,
+        owl:Class,
+        dpv-owl:OrganisationalMeasure ;
+    dct:contributor "Harshvardhan J. Pandit" ;
+    dct:created "2024-12-17"^^xsd:date ;
+    rdfs:isDefinedBy dpv-owl: ;
+    rdfs:subClassOf dpv-owl:OrganisationalMeasure ;
+    sw:term_status "accepted"@en ;
+    skos:definition "An audit is a systematic examination or evaluation of records, processes, or systems towards a specific objective such as to assess accuracy, compliance, effectiveness, or performance"@en ;
+    skos:prefLabel "Audit"@en .
+
 dpv-owl:AuditApproved a rdfs:Class,
         owl:Class,
         dpv-owl:AuditStatus ;
@@ -1148,11 +1159,11 @@ dpv-owl:Collect a rdfs:Class,
         dpv-owl:Processing ;
     dct:created "2019-05-07"^^xsd:date ;
     dct:source [ a schema:WebPage ;
-            schema:name "SPECIAL Project" ;
-            schema:url "https://specialprivacy.ercim.eu/vocabs/processing" ],
-        [ a schema:WebPage ;
             schema:name "GDPR Art.4-2" ;
-            schema:url "https://eur-lex.europa.eu/eli/reg/2016/679/art_4/par_2/oj" ] ;
+            schema:url "https://eur-lex.europa.eu/eli/reg/2016/679/art_4/par_2/oj" ],
+        [ a schema:WebPage ;
+            schema:name "SPECIAL Project" ;
+            schema:url "https://specialprivacy.ercim.eu/vocabs/processing" ] ;
     rdfs:isDefinedBy dpv-owl: ;
     rdfs:subClassOf dpv-owl:Obtain ;
     sw:term_status "accepted"@en ;
@@ -4954,6 +4965,17 @@ dpv-owl:InferredPersonalData a rdfs:Class,
     skos:prefLabel "Inferred Personal Data"@en ;
     skos:scopeNote "Inferred Data is derived data generated from existing data, but which did not originally exist within it, e.g. inferring demographics from browsing history."@en .
 
+dpv-owl:InformationAudit a rdfs:Class,
+        owl:Class,
+        dpv-owl:OrganisationalMeasure ;
+    dct:contributor "Paul Ryan, Harshvardhan J. Pandit" ;
+    dct:created "2024-12-17"^^xsd:date ;
+    rdfs:isDefinedBy dpv-owl: ;
+    rdfs:subClassOf dpv-owl:Audit ;
+    sw:term_status "accepted"@en ;
+    skos:definition "An audit that systematically examines the existence and use of information along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared)"@en ;
+    skos:prefLabel "Information Audit"@en .
+
 dpv-owl:InformationFlowControl a rdfs:Class,
         owl:Class,
         dpv-owl:TechnicalMeasure ;
@@ -5337,6 +5359,17 @@ dpv-owl:LegalComplianceAssessment a rdfs:Class,
     skos:definition "Assessment regarding legal compliance"@en ;
     skos:prefLabel "Legal Compliance Assessment"@en .
 
+dpv-owl:LegalComplianceAudit a rdfs:Class,
+        owl:Class,
+        dpv-owl:OrganisationalMeasure ;
+    dct:contributor "Harshvardhan J. Pandit" ;
+    dct:created "2024-12-17"^^xsd:date ;
+    rdfs:isDefinedBy dpv-owl: ;
+    rdfs:subClassOf dpv-owl:Audit ;
+    sw:term_status "accepted"@en ;
+    skos:definition "An audit that systematically examines the state of legal compliance by reviewing policies and procedures related to obligations and compliance requirements for specific laws and regulations"@en ;
+    skos:prefLabel "Legal Compliance Audit"@en .
+
 dpv-owl:LegalEntity a rdfs:Class,
         owl:Class ;
     dct:contributor "Harshvardhan J. Pandit" ;
@@ -6960,6 +6993,18 @@ dpv-owl:PersonalData a rdfs:Class,
     skos:related spl:AnyData ;
     skos:scopeNote "This definition of personal data encompasses the concepts used in GDPR Art.4-1 for 'personal data' and ISO/IEC 2700 for 'personally identifiable information (PII)'."@en .
 
+dpv-owl:PersonalDataAudit a rdfs:Class,
+        owl:Class,
+        dpv-owl:OrganisationalMeasure ;
+    dct:contributor "Paul Ryan, Harshvardhan J. Pandit" ;
+    dct:created "2024-12-17"^^xsd:date ;
+    rdfs:isDefinedBy dpv-owl: ;
+    rdfs:subClassOf dpv-owl:InformationAudit ;
+    sw:term_status "accepted"@en ;
+    skos:definition "An audit that systematically examines the existence and use of personal data along with its associated resources (e.g. where it is stored) and flows (e.g. where it originates and with whom it is being shared)"@en ;
+    skos:prefLabel "Personal Data Audit"@en ;
+    skos:scopeNote "This concept is the same as \"Data Mapping\" and \"Data Flow Mapping Exercise\" used by the Information Comissioner's Office as \"to document the data that flows in, around, and out of information processing systems or services\""@en .
+
 dpv-owl:PersonalDataHandling a rdfs:Class,
         owl:Class ;
     dct:contributor "Axel Polleres, Javier Fernández" ;
@@ -8039,11 +8084,11 @@ dpv-owl:Recipient a rdfs:Class,
     dct:created "2019-04-05"^^xsd:date ;
     dct:modified "2024-05-21"^^xsd:date ;
     dct:source [ a schema:WebPage ;
-            schema:name "GDPR Art.4-9g" ;
-            schema:url "https://eur-lex.europa.eu/eli/reg/2016/679/art_4/par_9/oj" ],
-        [ a schema:WebPage ;
             schema:name "SPECIAL Project" ;
-            schema:url "https://specialprivacy.ercim.eu/" ] ;
+            schema:url "https://specialprivacy.ercim.eu/" ],
+        [ a schema:WebPage ;
+            schema:name "GDPR Art.4-9g" ;
+            schema:url "https://eur-lex.europa.eu/eli/reg/2016/679/art_4/par_9/oj" ] ;
     rdfs:isDefinedBy dpv-owl: ;
     rdfs:subClassOf dpv-owl:LegalEntity ;
     sw:term_status "accepted"@en ;
@@ -9074,6 +9119,17 @@ dpv-owl:SecurityAssessment a rdfs:Class,
     skos:definition "Assessment of security intended to identity gaps, vulnerabilities, risks, and effectiveness of controls"@en ;
     skos:prefLabel "Security Assessment"@en .
 
+dpv-owl:SecurityAudit a rdfs:Class,
+        owl:Class,
+        dpv-owl:OrganisationalMeasure ;
+    dct:contributor "Harshvardhan J. Pandit" ;
+    dct:created "2024-12-17"^^xsd:date ;
+    rdfs:isDefinedBy dpv-owl: ;
+    rdfs:subClassOf dpv-owl:Audit ;
+    sw:term_status "accepted"@en ;
+    skos:definition "An audit that systematically examines the existence and use of security risks and measures within information systems, networks, and security policies to identify vulnerabilities, risks, and gaps"@en ;
+    skos:prefLabel "Security Audit"@en .
+
 dpv-owl:SecurityIncidentNotice a rdfs:Class,
         owl:Class,
         dpv-owl:OrganisationalMeasure ;