MaaS surveillance

Privacy considerations in mobility as a service

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

The concept of Mobility as a Service (MaaS) is seeing increasing attention from researchers, industry, and the public sector. MaaS, which posits that traditional models of car ownership and travel may be supplanted by models focused on packages of shared vehicle access, use of public transport, active transport, and teleworking, is currently viewed as having potential beneficial impacts including reductions in single-occupancy vehicle trips, with concomitant reductions in travel cost, congestion, and environmental concerns. MaaS, however, relies upon a number of social expectations, including trust, reliability, and transparency, each of which is reliant upon both the social network that enables MaaS to work efficiently, and upon the ways in which data are handled within the enabling framework. In light of this, it is anticipated that the recently-enacted General Data Protection Regulation (GDPR) has the potential to significantly impact upon the further implementation of MaaS. MaaS services are predicated upon the sharing of personal travel information (vehicle availability, origins, destinations, financial information, social network data, etc.) that, under GDPR, may be considered personal, subject to the regulations and restrictions this categorisation implies. For MaaS to work in a European context, then, it must be responsive to GDPR requirements related to issues such as Privacy by Design, Consent, and Protection. In this paper, we explore the concept of MaaS in relation to privacy considerations raised by GDPR requirements, with attention to methods and techniques related to relevant data acquisition, sharing, and protection processes. A case study of the Whim application’s privacy policy is presented to demonstrate the potential implications of this policy in an applied context.
Original languageEnglish
JournalTransportation Research. Part A, Policy and Practice
Early online date24 Sep 2019
DOIs
Publication statusE-pub ahead of print - 24 Sep 2019

Fingerprint

Data privacy
data protection
privacy
surveillance
regulation
travel
social network
Transparency
data acquisition
Data acquisition
Railroad cars
public transport
Availability
transparency
public sector
Privacy
Surveillance
Data protection
industry
Costs

Cite this

@article{5798e4aa12d94dd59dfb4767b9f4842d,
title = "MaaS surveillance: Privacy considerations in mobility as a service",
abstract = "The concept of Mobility as a Service (MaaS) is seeing increasing attention from researchers, industry, and the public sector. MaaS, which posits that traditional models of car ownership and travel may be supplanted by models focused on packages of shared vehicle access, use of public transport, active transport, and teleworking, is currently viewed as having potential beneficial impacts including reductions in single-occupancy vehicle trips, with concomitant reductions in travel cost, congestion, and environmental concerns. MaaS, however, relies upon a number of social expectations, including trust, reliability, and transparency, each of which is reliant upon both the social network that enables MaaS to work efficiently, and upon the ways in which data are handled within the enabling framework. In light of this, it is anticipated that the recently-enacted General Data Protection Regulation (GDPR) has the potential to significantly impact upon the further implementation of MaaS. MaaS services are predicated upon the sharing of personal travel information (vehicle availability, origins, destinations, financial information, social network data, etc.) that, under GDPR, may be considered personal, subject to the regulations and restrictions this categorisation implies. For MaaS to work in a European context, then, it must be responsive to GDPR requirements related to issues such as Privacy by Design, Consent, and Protection. In this paper, we explore the concept of MaaS in relation to privacy considerations raised by GDPR requirements, with attention to methods and techniques related to relevant data acquisition, sharing, and protection processes. A case study of the Whim application’s privacy policy is presented to demonstrate the potential implications of this policy in an applied context.",
author = "Cottrill, {Caitlin D.}",
year = "2019",
month = "9",
day = "24",
doi = "10.1016/j.tra.2019.09.026",
language = "English",
journal = "Transportation Research. Part A, Policy and Practice",
issn = "0965-8564",
publisher = "Elsevier Limited",

}

TY - JOUR

T1 - MaaS surveillance

T2 - Privacy considerations in mobility as a service

AU - Cottrill, Caitlin D.

PY - 2019/9/24

Y1 - 2019/9/24

N2 - The concept of Mobility as a Service (MaaS) is seeing increasing attention from researchers, industry, and the public sector. MaaS, which posits that traditional models of car ownership and travel may be supplanted by models focused on packages of shared vehicle access, use of public transport, active transport, and teleworking, is currently viewed as having potential beneficial impacts including reductions in single-occupancy vehicle trips, with concomitant reductions in travel cost, congestion, and environmental concerns. MaaS, however, relies upon a number of social expectations, including trust, reliability, and transparency, each of which is reliant upon both the social network that enables MaaS to work efficiently, and upon the ways in which data are handled within the enabling framework. In light of this, it is anticipated that the recently-enacted General Data Protection Regulation (GDPR) has the potential to significantly impact upon the further implementation of MaaS. MaaS services are predicated upon the sharing of personal travel information (vehicle availability, origins, destinations, financial information, social network data, etc.) that, under GDPR, may be considered personal, subject to the regulations and restrictions this categorisation implies. For MaaS to work in a European context, then, it must be responsive to GDPR requirements related to issues such as Privacy by Design, Consent, and Protection. In this paper, we explore the concept of MaaS in relation to privacy considerations raised by GDPR requirements, with attention to methods and techniques related to relevant data acquisition, sharing, and protection processes. A case study of the Whim application’s privacy policy is presented to demonstrate the potential implications of this policy in an applied context.

AB - The concept of Mobility as a Service (MaaS) is seeing increasing attention from researchers, industry, and the public sector. MaaS, which posits that traditional models of car ownership and travel may be supplanted by models focused on packages of shared vehicle access, use of public transport, active transport, and teleworking, is currently viewed as having potential beneficial impacts including reductions in single-occupancy vehicle trips, with concomitant reductions in travel cost, congestion, and environmental concerns. MaaS, however, relies upon a number of social expectations, including trust, reliability, and transparency, each of which is reliant upon both the social network that enables MaaS to work efficiently, and upon the ways in which data are handled within the enabling framework. In light of this, it is anticipated that the recently-enacted General Data Protection Regulation (GDPR) has the potential to significantly impact upon the further implementation of MaaS. MaaS services are predicated upon the sharing of personal travel information (vehicle availability, origins, destinations, financial information, social network data, etc.) that, under GDPR, may be considered personal, subject to the regulations and restrictions this categorisation implies. For MaaS to work in a European context, then, it must be responsive to GDPR requirements related to issues such as Privacy by Design, Consent, and Protection. In this paper, we explore the concept of MaaS in relation to privacy considerations raised by GDPR requirements, with attention to methods and techniques related to relevant data acquisition, sharing, and protection processes. A case study of the Whim application’s privacy policy is presented to demonstrate the potential implications of this policy in an applied context.

U2 - 10.1016/j.tra.2019.09.026

DO - 10.1016/j.tra.2019.09.026

M3 - Article

JO - Transportation Research. Part A, Policy and Practice

JF - Transportation Research. Part A, Policy and Practice

SN - 0965-8564

ER -