- GDPR compliant for all use cases
The Snap4City platform is compliant according to GDPR addressing the data types according to a signed consent.
When the registration is performed on the APP, the user has to perform a signed consent.
On the App as well as on the web portal, the users may decide to register or remain anonymous. In latter case the user is going to have access to a limited number of functionalities.
The user may decide to revoke the consent for data collected by means of the mobile App directly on the App. In addition, the user can see and/or cancel the collected data, download them from the web portal.
It is also possible of requesting to apply for “Forget me totally” or partially. These features are available from the user profile web page.
- End-users can give their consent to use their data non-anonymously
When the user decides to give the consent to access his data in a not-anonymously way, his identity (the User Profile, like his email address, but can be also his name, surname or social media identity) is linked to the activities performed. All the connections are performed over a HTTPS channel. The user can decide to remove the consent anytime from the user profile web page or from the mobile App.
- End-users can decide to not give their consent to use their data
If the user decides to not give consent to access his data, his identity will be never recorded by the platform.
- End-users can delete their data (completely or partially)
The user can decide to delete all his data types or just some of them. The specified data types when deleted by the users are put in a limbo-mode for a configurable slot of time (i.e., 1 month) to support future Audit (i.e., police investigation). Whenever this time elapses, the data are completely removed and when cannot be removed they are fully anonymized. It will never be possible to revert this action and will be never possible to re-identify the row data. For User Profile data, all the sensitive data will be completely erased from the platform. For the other data types any terminal identification and linkage to the User Profile will be purged and they will be eventually aggregated each other for specific statistical purpose. The user can delete his data from the mobile App or from the user profile webapp.
- End-users can download their data
The user can (anytime) download all his data types or just some of them. The format of the exported data is conformant to open format likes xml or Json so that it can be easy to be re-imported in a different platform.
- End-users can change the type of consent given for all data types at any given moment in time
The user can decide (anytime) to change the type of consent to access his own data types. Any linkage between the User Profile and the data types are managed accordingly, as specified by the user. The user can change the consent of his data from the mobile App from the user profile webapp. The User Profile keeps track of the level of consent the user gave for any data types. The user may decide to revoke the consent to provide the data from a given time instant (on/off). On the other hand, he/she may also decide to remove all the data of a certain type forever in the past and future.
- End-users have the ability to "forget me" for specific data types at any given moment in time
The user can decide (anytime) to forget some specific data types. These data will be completely anonymized and will be aggregated each other just for statistical purpose. From this moment, it will be never possible to identify any information from the specified data types. If the User Profiler data set is specified, his personal sensitive data will be completely erased from the platform. The user can request to forget his data from the mobile App via Smart City API (“Settings” box) or from the user profile webapp (if the user is not anonymous).
- End-user have the ability to be "forgotten"
The user can decide (anytime) to be forgotten. Any of his data will be completely anonymized and will be aggregated each other just for statistical purpose. It will be never possible to re-identify all this information. Moreover, from this moment will be never possible to identify with his user or terminal identity. This will apply to any data type. The User Profiler and his personal sensitive data will be completely removed from the system. The user can request to forget his data from the mobile.
- The Contractor will provide an interface in which the end-user is able to view all data types and the level of consent given
The user can view (anytime) the type of consent he gave for data types from the mobile or from the user profile web. The User Profile keeps track of the level of consent the user gave for any data types.
To view the “My Personal Data Type”
From that link a web page is open with the following links: