Collaborative business and data privacy: Toward a cyber-control?

The pervasive use of communication and information technologies can be seen as a driving force to develop distributed organisations. As far as collaborative business is concerned, short-term e-collaboration can be developed. In this case, security policies must be integrated in the common business process (BP) organisation so that trusted co-operation can be established. For this purpose we propose to couple a generic authorisation workflow to the business process own workflow and to report all the actions on the shared information systems. Nevertheless, reporting tools can be seen as threats on data privacy. We propose here a multi-level architecture to provide both a sufficient security level and a personal data privacy protection.