PADRES: Tool for PrivAcy, Data REgulation and Security
Pereira, F. P
;
Crocker, P.
; Valderi, V. L
SoftwareX Vol. 17, Nº 1, pp. 100895 - 100895, January, 2022.
ISSN (print): 2352-7110
ISSN (online):
Scimago Journal Ranking: 0,57 (in 2022)
Digital Object Identifier: 10.1016/j.softx.2021.100895
Abstract
Since May 2018, companies have been required to comply with the General Data Protection Regulation (GDPR). The compliance process can be very expensive, for example, specialized human resources are needed who need to study the regulations and then implement any changes in company procedures, IT applications and infrastructures. With this in mind, PADRES a tool for PrivAcy, Data REgulation and Security was developed to analyse web applications and help in the compliance process. This open source software contains the main points of GDPR organized by principles in the form of a checklist and questionnaire. These questions are answered manually. Optionally a security analysis can also be performed, this is performed by integrating open source scanning tools such as NMAP, ZAP and cookie analyzers. The output of these tools is saved and a final merged report is generated with the information obtained and also a set of suggestions and recommendations.