iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/TR 12859:2009

(Main)

Intelligent transport systems — System architecture — Privacy aspects in ITS standards and systems

Intelligent transport systems — System architecture — Privacy aspects in ITS standards and systems

ISO/TR 12859:2009 gives general guidelines to developers of intelligent transport systems (ITS) standards and systems on data privacy aspects and associated legislative requirements for the development and revision of ITS standards and systems.

Systèmes intelligents de transport — Architecture de système — Aspects privés dans les normes et les systèmes SIT

General Information

Status
Published
Publication Date
27-May-2009
ICS
03.220.01 - Transport in general
35.240.60 - IT applications in transport
Technical Committee
ISO/TC 204 - Intelligent transport systems
Drafting Committee
ISO/TC 204/WG 1 - Architecture
Current Stage
9093 - International Standard confirmed
Start Date
17-Jan-2020
Completion Date
19-Apr-2025
Ref Project
ISO/TR 12859:2009 - Intelligent transport systems -- System architecture -- Privacy aspects in ITS standards and systemsISO/TR 12859:2009 - Intelligent transport systems -- System architecture -- Privacy aspects in ITS standards and systems
PreviousNext
Technical report
ISO/TR 12859:2009 - Intelligent transport systems -- System architecture -- Privacy aspects in ITS standards and systems
English language
18 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


TECHNICAL ISO/TR
REPORT 12859
First edition
2009-06-01
Intelligent transport systems — System
architecture — Privacy aspects in ITS
standards and systems
Systèmes intelligents de transport — Architecture de système —
Aspects privés dans les normes et les systèmes SIT

Reference number
©
ISO 2009
PDF disclaimer
This PDF file may contain embedded typefaces. In accordance with Adobe's licensing policy, this file may be printed or viewed but
shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In
downloading this file, parties accept therein the responsibility of not infringing Adobe's licensing policy. The ISO Central Secretariat
accepts no liability in this area.
Adobe is a trademark of Adobe Systems Incorporated.
Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation
parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In
the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below.

©  ISO 2009
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means,
electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or
ISO's member body in the country of the requester.
ISO copyright office
Case postale 56 • CH-1211 Geneva 20
Tel. + 41 22 749 01 11
Fax + 41 22 749 09 47
E-mail copyright@iso.org
Web www.iso.org
Published in Switzerland
ii © ISO 2009 – All rights reserved

Contents Page
Foreword .iv
Introduction.v
1 Scope.1
2 Terms, definitions and abbreviated terms.1
2.1 Terms and definitions .1
2.2 Abbreviated terms .2
3 Background.2
3.1 Origin and basis of this Technical Report .2
3.2 Privacy requires security.3
3.3 The investigative process.3
4 Recommendations .5
4.1 Basis of recommendations.5
4.2 Avoidance of harm .5
4.3 Fairly and lawfully .5
4.4 Specified, explicit and legitimate purposes.5
4.5 Explicit and legitimate and must be determined at the time of collection of the data.5
4.6 Not further processed in a way incompatible with the purposes for which they are
originally collected .5
4.7 Not to be disclosed without the consent of the data subject .6
4.8 Adequate, relevant and not excessive in relation to the purposes for which they are
collected .6
4.9 Accurate and, where necessary, kept up to date.6
4.10 Identification of data subjects for no longer than is necessary for the purposes for which
the data were collected.6
4.11 Restriction to those who have a demonstrable “need to know”.6
4.12 Clear and accessible.7
4.13 Security safeguards .7
4.14 Cumulative interpretation of multiple recommendations .7
Annex A (informative) Data privacy Framework, Directives and Guidelines.8
Annex B (informative) Example of national implementation of guidelines.9
Annex C (informative) Examples of the principle of “cumulative interpretation”.11
Annex D (informative) Security-related International Standards .14
Bibliography.17

Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies
(ISO member bodies). The work of preparing International Standards is normally carried out through ISO
technical committees. Each member body interested in a subject for which a technical committee has been
established has the right to be represented on that committee. International organizations, governmental and
non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the
International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.
International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.
The main task of technical committees is to prepare International Standards. Draft International Standards
adopted by the technical committees are circulated to the member bodies for voting. Publication as an
International Standard requires approval by at least 75 % of the member bodies casting a vote.
In exceptional circumstances, when a technical committee has collected data of a different kind from that
which is normally published as an International Standard (“state of the art”, for example), it may decide by a
simple majority vote of its participating members to publish a Technical Report. A Technical Report is entirely
informative in nature and does not have to be reviewed until the data it provides are considered to be no
longer valid or useful.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. ISO shall not be held responsible for identifying any or all such patent rights.
ISO/TR 12859 was prepared by Technical Committee ISO/TC 204, Intelligent transport systems.

iv © ISO 2009 – All rights reserved

Introduction
Intelligent transport systems (ITS) are intrinsically linked to the movement and exchange of data. Some of
these data are purely situational or anonymous, however several, either by themselves or as part of multiple
data concepts, which independently can be purely situational or anonymous, taken together can provide
personal information.
In the modern world, it is often neither possible nor desirable for information to always be anonymous,
therefore, the privacy of data is protected around the world by data privacy and data protection regulations.
While the evolution and development of ITS technology provides many opportunities for the provision of
increasingly sophisticated ITS services mostly designed for the benefit of users, when designing ITS systems
and standards it is imperative that, as part of the fundamental design, the legal and moral requirements for the
privacy and protection of data be taken into account at an early stage of system design. This is not only
desirable from a moral point of view, but is required in order for a system or standard to be legally compliant.
This means taking into consideration not only the potential use, but also protection against misuse of data in a
system.
Specific data privacy protection legislation is generally achieved through national legislation and this varies
from country to country. The general principles are geographically common, however, and due to provisions
made by trading blocks such as the European Union and APEC, there are many universal aspects to data
privacy and data protection.
Users tend to interpret these guidelines in the context of their national laws. For users in EU member states,
Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of
individuals with regard to the processing of personal data and on the free movement of such data and its
successive instruments are mandatory within these states. International courts are likely to give precedence to
a combination of the OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data
(OECD Guidelines) and either Directive 95/46/EC or the APEC Privacy Framework, as appropriate.
Using the guidelines espoused by Directive 95/46/EC, the APEC Privacy Framework and the OECD
Guidelines, this Technical Report provides guidance to developers of ITS standards and systems on general
data privacy and protection aspects for the fundamental architecture and design of all ITS standards, systems
and implementations.
TECHNICAL REPORT ISO/TR 12859:2009(E)

Intelligent transport systems — System architecture — Privacy
aspects in ITS standards and systems
1 Scope
This Technical Report gives general guidelines to developers of intelligent transport systems (ITS) standards
and systems on data privacy aspects and associated legislative requirements for the development and
revision of ITS standards and systems.
For guidance on specific data protection and data privacy requirements on the subject of ITS probe data, see
1)
ISO 24100 .
2 Terms, definitions and abbreviated terms
For the purposes of this document, the following terms, definitions and abbreviated terms apply.
2.1 Terms and definitions
2.1.1
accountability
responsibility for complying with measures, making compliance evident, and the associated required
disclosures
2.1.2
collection limitation
limit to the collection of personal data
2.1.3
data protection
use of means such as legal safeguards to prevent the misuse of information stored on computers, particularly
information about individual people
2.1.4
data quality
standard of acceptability of accuracy of personal data
2.1.5
individual participation
right of an individual to have access to personal data held about the individual and the ability to challenge and
correct such data
2.1.6
openness
policy of openness about developments, practices and policies with respect to personal data

1) To be published.
2.1.7
personal data
data about a living individual, identified or identifiable, as determined by the privacy laws and conventions of a
political jurisdiction
2.1.8
personal information controller
entity or organization that controls the collection, holding, processing or use of personal information
2.1.9
privacy
quality of being secluded from the presence or view of others
2.1.10
purpose specification
purpose for which personal data are collected
2.1.11
security safeguard
safeguard against such risks as loss or unauthorized access, destruction, use, modification or disclosure of
data
2.1.12
use limitation
limit to the purposes for which personal data can be used
2.2 Abbreviated terms
APEC Asia-Pacific Economic Cooperation
NOTE This is the group of Pacific Rim countries that meet with the purpose of improving economic and political ties.
OECD Organisation for Economic Co-operation and Development
NOTE This organization promotes stable economic growth in its member states and provides advice to other
countries.
EU European Union
NOTE This is the union with economic, monetary and political ties and intergovernmental coordination of foreign and
security policies among 27 European member states.
3 Background
3.1 Origin and basis of this Technical Report
This Technical Report originated from discussions in ISO/TC 204 and CEN TC 278, subsequent to legal
studies undertaken in Austria concerning the use of personal data in ITS. The pressure for business case
justification initially sustains such developments without a clear legal position and it is necessary to consider
the technical and engineering possibilities, as well as ensure that they evolve within a framework of generally
(internationally) accepted data protection principles and of course within national data protection legislation.
This Technical Report attempts to create the necessary nexus for intelligent infrastructure systems and
provide for their implementation to the greatest extent possible. It attempts to serve as a sci
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO/TS 14812:2025(Main)
Intelligent transport systems — Vocabulary

This document defines terms relating to intelligent transport systems (ITS).

  • Technical specification
    87 pages
    English language
    sale 15% off
ISO
ISO/TR 22087:2025(Main)
Intelligent transport systems — Collection of agent behaviour information and sharing between ITS stations

This document describes the common description of the driving behaviour information set (DBIS) data structure and data exchange procedures for sharing among distributed ITS stations by nomadic devices.

  • Technical report
    16 pages
    English language
    sale 15% off
ISO
ISO 25110:2025(Main)
Electronic fee collection — Interface definition for on-board account using an integrated circuit card (ICC)

This document specifies the data transfer models between roadside equipment (RSE) and integrated circuit cards (ICCs) and the interface descriptions between the RSE and on-board equipment (OBE) for on-board accounts using an ICC. It also provides examples of interface definitions and transactions deployed in several countries. This document covers: — data transfer models between the RSE and ICC which correspond to the categorized operational requirements and the data transfer mechanism for each model; — the interface definition between the RSE and OBE based on each data transfer model; — the interface definition for each model; — the functional configuration; — RSE command definitions for ICC access; — the data format and data element definitions of RSE commands; — a transaction example for each model (Annex B).

  • Standard
    29 pages
    English language
    sale 15% off
ISO
ISO 21219-21:2025(Main)
Intelligent transport systems — Traffic and travel information (TTI) via transport protocol experts group, generation 2 (TPEG2) — Part 21: Geographic location referencing (TPEG-GLR)

This document establishes a method of using geographic location referencing (GLR) that can be used by relevant TPEG applications. The GLR type, defined in this document, is used for defining geographic location references (points, polylines and geographical areas). The GLR method is intended to be one of the methods that can be transported inside a TPEG-Location Referencing Container (TPEG-LRC) for those TPEG applications providing information for primarily geographical locations (e.g. weather). The GLR specification is deliberately kept basic and compact, so that it can also be employed advantageously in non-navigation devices, for simple TPEG services such as weather information, safety alerts, etc. As such, the GLR location referencing method is intended to be complementary to map-related location referencing methods, where the focus is on the referencing of anthropogenic artefacts such as roads and highways. For this reason, the scope of GLR is limited to geographic locations on the Earth’s surface.

  • Standard
    29 pages
    English language
    sale 15% off
ISO
ISO/TS 21219-13:2025(Main)
Intelligent transport systems — Traffic and travel information via transport protocol experts group, generation 2 (TPEG2) — Part 13: Public transport information service (TPEG2-PTS)

This document describes the “public transport information service” (PTS) application, which is intended to cover all modes of public (i.e. collective) transport, both for inter-urban and intra-urban travel. The PTS application is designed to allow the efficient and language-independent delivery of public transport information directly from a service provider to end-users. The PTS application design is based on three main use cases. — Provision of alert information: an alert is a warning that indicates an emergency situation. This case is specifically relevant for broadcast/push mode, for major deviations or disruptions which are relevant for a large number of travellers. A dedicated alert request is also defined and can be used if a backchannel is available. — Timetable information, both scheduled and real time: this information is in some cases relevant for broadcast, e.g. in case of large events for the transport modalities to/from the event site. A dedicated timetable request is also defined and can be used if a backchannel is available. — Individual requests for trip information (backchannel is required). The PTS application focuses on providing core information regarding public transport in order to ensure the compactness of the TPEG application. Specific information as provided in typical public transport apps (e.g. fare information) is not in the scope of this document.

  • Technical specification
    73 pages
    English language
    sale 15% off
ISO
ISO 21219-25:2024(Main)
Intelligent transport systems — Traffic and travel information (TTI) via transport protocol experts group, generation 2 (TPEG2) — Part 25: Electromobility charging infrastructure (TPEG2-EMI)

This document specifies the "electromobility information" (EMI) TPEG application. The EMI application has been specifically designed to support information about charging infrastructure for electric vehicles (not just cars), the location of e-charging points and their suitability for the respective vehicle (e.g. connector type, charging modality). As electric vehicles will occupy a “charging space” for longer a time than other vehicles, information on availability/waiting time and reservation options are accounted for, as they are highly relevant for enabling a user of an electric vehicle to optimally plan their route/trip. The standardized delivery, via TPEG technology, of electromobility information has the following benefits to an end user of this TPEG service: a) identification of suitable charging units for vehicles, thus preventing unnecessary travel to find a fitting unit (also has environmental benefits); b) verification of the real-time availability of charging units; c) possibility of planning ahead and reserving a spot in a charging park, thus optimizing trip planning; d) possibility of selecting a financially attractive charging point in a charging park where the operator has billing agreements with the user’s electromobility provider. In addition to these end-user benefits, electromobility providers and charging park operators also benefit from a standardized TPEG format as it facilitates harmonization of the electromobility information with the data formats used for the exchange of information between management systems of electromobility providers and charge park operators and related specifications (e.g. Open Charge Alliance,[1] eMobility ICT Interoperability Innovation (eMI3),[2] etc.). The EMI application, as an add-on service component next to traffic information, for example, is laid out to support large numbers of charge parks with only modest bandwidth requirements.

  • Standard
    65 pages
    English language
    sale 15% off
ISO
ISO/TR 6029-1:2024(Main)
Intelligent transport systems — Seamless positioning for multimodal transportation in ITS stations — Part 1: General information and use case definition

This document describes use cases related to seamless positioning systems for multimodal transportation in ITS stations. The use cases define the effectiveness of the seamless positioning concept model based on the P-ITS-S to conclude basic PVT service results using available sensors when mobility is moving indoor and outdoor in a network on/off situation. Use cases are provided for each stage in different environments, e.g. indoor, outdoor, tunnel and out-of-network area when travelling starts or ends. Within the use cases, the nomadic device implements a personal ITS station (P-ITS-S) to achieve compatibility with other ITS stations as referenced in this document. The main purpose of this document is to describe the overall concept model, which specifies: — the concept model and actors for each domain; — the relationship of actors under the material domain; — the message sequence diagrams for each domain; and — the data transmission list for each actor to provide a seamless indoor and outdoor positioning system through sensor data fusion. In addition, this document provides: — basic principles used in its drafting; and — a gap analysis, consisting of a formal study of: — the status of seamless positioning technology and implementations, — how seamless positioning technology intends to evolve, and — how to close the gap between current and future technology and implementations. — This document compares desired and actual outcomes and pinpoints opportunities for improvement.

  • Technical report
    40 pages
    English language
    sale 15% off
ISO
ISO 22086-2:2024(Main)
Intelligent transport systems (ITS) — Network-based precise positioning infrastructure for land transportation — Part 2: Functional requirements and data sets for nomadic devices

This document specifies the functional requirements of nomadic devices for lane-level positioning and integrity monitoring with the network-based precise positioning infrastructure for land transportation (NETPPI-LT), a lane-level positioning system based on global navigation satellite systems (GNSS) described in ISO/TR 22086-1. This document identifies the GNNS threats to monitor and the errors to remove or mitigate to achieve lane-level accuracy and integrity. It also specifies the data sets to be contained in messages between the nomadic device and the control station providing GNSS correction and integrity information. This specification enables the nomadic device to support lane-level positioning and integrity monitoring. Enabling techniques and methods, which can be different for each provider or vendor, are not addressed in this document.

  • Standard
    14 pages
    English language
    sale 15% off
ISO
ISO/TR 17748-1:2024(Main)
Intelligent transportation systems — Energy-based green ITS services for smart city mobility applications via nomadic and mobile devices — Part 1: General information and use case definitions

This document provides a framework and information on the total amount of energy appropriate for the deployment of smart city mobility and energy efficiency technologies. These technologies can increase operational energy efficiency and unlock enhanced transportation waste-free energy applications, as well as measuring energy consumption. The standard framework for energy-based green intelligent transport systems (G-ITS) builds on the best practices for energy efficient transport and management systems, as well as applications of intelligent transport systems (ITS), and aims to accommodate the specific needs of energy-based green ITS in smart cities. G-ITS use data platforms to measure energy for transport and to forecast demand. A smart city provides G-ITS services to improve energy efficiency by using nomadic devices and by monitoring energy supply and demand. This document describes the change in the traffic paradigm from the perspective of energy efficiency. It outlines: — general information for energy-based G-ITS as a service using nomadic and mobile devices; — use cases for energy-based G-ITS services using nomadic and mobile devices; — use cases for energy-based mobility services, for example electric vehicles (EV), transportation infrastructure and other mobility services using nomadic devices.

  • Technical report
    12 pages
    English language
    sale 15% off
ISO
ISO 17438-2:2024(Main)
Intelligent transport systems — Indoor navigation for personal and vehicle ITS stations — Part 2: Requirements and specification for indoor maps

This document defines requirements and specifications of indoor positioning references, which can be referenced for positioning in indoor space, for supporting indoor navigation functionality of a personal/vehicle (P/V) ITS station. NOTE Specific structure and contents of indoor positioning references depend on types of indoor positioning technologies. This document defines: a) the composition of an indoor map for indoor navigation of P/V ITS stations; b) the schema and encoding format of the indoor map for indoor navigation at the P/V ITS stations. This document focuses on the specification and format of the indoor map. The following issues which are adjunctive but essential for commercial navigation services are beyond the scope of this document: — authorized and authenticated access of users and services, including security; — payment; — preparation of indoor data which are necessary for indoor navigation; — low-level communication protocols required to transfer and share data from and to a roadside ITS station or a central ITS station; — other issues dependent on implementation of an instance of indoor navigation.

  • Standard
    29 pages
    English language
    sale 15% off