Statement: Data Sovereignty refers to the ability of stakeholders involved in the delivery of public services to have full control over the shared data.
Rationale:
The concept of data sovereignty is becoming more and more relevant while digital transformation advances. Digital Sovereignty is relevant in the context of digital public services because allows the control of which data is shared between parties.
Under an environment compliant with data sovereignty, all stakeholders can manage the data they aim to provide. Therefore, when planning and designing public services, data sovereignty is a pillar to guarantee the rights and obligations of the different parties.
Nowadays, data spaces are gaining relevance and public administrations are putting efforts to focus on interoperability through the establishment of domain-specific data spaces. In this field, data sovereignty is specifically relevant and needs to be taken into account.
Implications:
Organisations behind digital pubic services should ensure and put in place the required mechanism to ensure that parties involved in the services (public administrations, citizens, and businesses) have the capability to control the data shared. Additionally, mechanisms to detect when relevant and private data is about to be leaked. Security and privacy are narrowly related and need to be handled accordingly to ensure compliance with the principle.
Principle Source: "Towards a Reference Enterprise Architecture to enforce Digital Sovereignty in International Data Spaces". University of Twente.
Principle Source URL: https://ris.utwente.nl/ws/portalfiles/portal/285489087/_Firdausy_2022_T…
Scope: Business Agnostic
Category: Digital Public Service Strategy (Public Policy Cycle)
Interoperability Layer: Legal IoP, Organisational IoP, Semantic IoP