i-locate will extend current standards to support indoor/outdoor LBS based on sound privacy and security policies, for the highest protection of personal/critical data. In particular, the project will contribute to the definition of specific privacy and security policies1. For this the technology and the pilots will be built upon a Privacy Impact Assessment (PIA) and a TVRA (Threat, Vulnerability and Risk Analyses) that will be carried on in compliance with industry standards from ETSI, ITU-T and ISO. Furthermore, the design of the i-locate framework will be based on a security-centric infrastructure following the Design for Assurance and Privacy by Design paradigms, having privacy of its users as a primary design goal. In parallel, specific policies regarding the different degrees of accessibility of different “open” data will be defined. For instance, while indoor location of a wheelchair or other ambulatory assistance device can be public, the location of a patient or specific medical asset will have to be limited to authorised entities within the boundaries of the health care systems. This is not in conflict with “open data” principle, since being able to access such information in an open way, intramurally, from the different medical systems will be of great aid and does not conflict with restriction of access to properly authorised entities.

The extensive use of location technologies, has required involvement of a specific expert (partner C3L) on privacy and security matters, in order to ensure the highest protection of personal/critical data.