About the project
Project Name: Open Provenance Knowledge Graph (OpenPKG)
OpenPKG is a decentralised data provenance system for improved governance and portability of personal data.
Team: Jurij Škornik, Branimir Rakić, Djordje Kovačević, Miloš Kotlar, Stevan Nešović, Irena Čuturić, Ana Bevc, Nejc Novak
Open Provenance Knowledge Graph (OpenPKG) is a decentralised knowledge graph for improved governance, portability, and privacy of personal data.
An open-source infrastructural foundation is being created and used to design a system that organisations can use to automate their GDPR compliance and have a transparent way of handling personal data. With its decentralised data provenance system, OpenPKG is introducing an efficient approach to tackle data transparency and portability challenges, also advancing governance and control over personal data by users. The system introduces a middle ground between data subjects, data controllers, and data processors that enables the required transparency when it comes to managing personal data.
An individual-focused web application will allow individuals to search for provenance of their Personally Identifiable Information (PII) within selected organisations, triggering responses to Data Subject Access Requests (DSAR) and providing full visibility to which data is accessible by organisations and what type of usage/processing it was subjected to.
OpenPKG system is open-source, neutral, and inclusive in order to omit service provider lock-ins. Utilising open standards, vocabularies, and ontologies, structured data will be available for easier transfers between service providers. As current solutions lack visualisation tools that would improve users’ understanding of their own data-usage lifecycle and to make informed decisions to retake control of their data, better user experience is to be employed in the OpenPKG to aid users take more active roles as prosumers.
The OpenPKG supports key vocabularies and ontologies to ensure interoperability and enable data connectivity. In order to achieve data integrity, it leverages decentralised networks but without ever exposing personal data to anyone without permissions. Most importantly, it takes into account both users and service providers by allowing clear data ownership and flexible consent management for users (data subjects), and automated DSAR compliance and positive differentiation for service providers.
Achievements from the first phase of the DAPSI programme
Trace Labs successfully developed and validated the OpenPKG prototype and the underlying open-source infrastructure. The prototype helped generate interest with our partners, confirming that OpenPKG efficiently addresses an existing business problem. OpenPKG is a tool that on one hand gives individuals control over the personal data collected on websites they visit, and on the other hand streamlines the process and reduces costs of Data Subject Access Requests (DSARs) for any organization with a website. A quick demo video, showing how OpenPKG works, is presented below:
Our participation in the DAPSI program provided us with a well-rounded support environment, significantly contributing to the successful development of the OpenPKG prototype. Takeaways from both business and technical trainings served as valuable input throughout our development journeyJurij Skornik
is Trace Labs’ CTO, an active member of open-source communities (W3C, Fiware, NGI), an expert on identity standards (GS1, W3C), who has been leading successful implementations of OriginTrail technology with various systems, has integrated advanced features (identity, consensus check, zero knowledge proofs) to the OriginTrail protocol, and designed solutions with Ethereum and Hyperledger Fabric blockchains.
is the lead application developer at Trace Labs, focusing his efforts on the development of applications, particularly its API infrastructure to support integration features with external systems, and has extensive experience in working with the OriginTrail Decentralized Network and Ethereum.