I want to inform that we have submitted a paper to Journal of Business & Information Systems Engineering (BISE, by Springer <https://www.springer.com/journal/12599>). If accepted we will acknowledge SPARTA project.

Abstract: Complying with the principles of the GDPR implies significant operational challenges. There is a need for tools and techniques to support analysis of complex textual bodies of regulations such as the GDPR. In this paper, we present a model-driven approach based on UML and BPMN to capture coarse-grained requirements of the GDPR along multiple perspectives - data protection impact assessment, data breach and organizational business process compliance. The models are used to develop templates of key report artifacts and provide insights into necessary compliance activities. By breaking down the regulation into modeled components, it becomes easier for practitioners to make sense of the regulation by reducing their need to process large bodies of regulation text. Additionally, the insights provided by the modeling approach to business process compliance highlight key areas of process improvement for compliance to the GDPR. The approach is supported by a software tool called the Data Protection Officer Tool.