Business process compliance using reference models of law

Research output: Contribution to journalConference articleResearchpeer-review

Standard

Business process compliance using reference models of law. / López, Hugo A.; Debois, Søren; Slaats, Tijs; Hildebrandt, Thomas T.

In: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 01.01.2020, p. 378-399.

Research output: Contribution to journalConference articleResearchpeer-review

Harvard

López, HA, Debois, S, Slaats, T & Hildebrandt, TT 2020, 'Business process compliance using reference models of law', Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), pp. 378-399. https://doi.org/10.1007/978-3-030-45234-6_19

APA

López, H. A., Debois, S., Slaats, T., & Hildebrandt, T. T. (2020). Business process compliance using reference models of law. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 378-399. https://doi.org/10.1007/978-3-030-45234-6_19

Vancouver

López HA, Debois S, Slaats T, Hildebrandt TT. Business process compliance using reference models of law. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2020 Jan 1;378-399. https://doi.org/10.1007/978-3-030-45234-6_19

Author

López, Hugo A. ; Debois, Søren ; Slaats, Tijs ; Hildebrandt, Thomas T. / Business process compliance using reference models of law. In: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2020 ; pp. 378-399.

Bibtex

@inproceedings{9a013104132b48bc98a9b6f866987885,
title = "Business process compliance using reference models of law",
abstract = "Legal compliance is an important part of certifying the correct behaviour of a business process. To be compliant, organizations might hard-wire regulations into processes, limiting the discretion that workers have when choosing what activities should be executed in a case. Worse, hard-wired compliant processes are difficult to change when laws change, and this occurs very often. This paper proposes a model-driven approach to process compliance and combines a) reference models from laws, and b) business process models. Both reference and process models are expressed in a declarative process language, The Dynamic Condition Response (DCR) graphs. They are subject to testing and verification, allowing law practitioners to check consistency against the intent of the law. Compliance checking is a combination of alignments between events in laws and events in a process model. In this way, a reference model can be used to check different process variants. Moreover, changes in the reference model due to law changes do not necessarily invalidate existing processes, allowing their reuse and adaptation. We exemplify the framework via the alignment of laws and business rules and a real contract change management process, Finally, we show how compliance checking for declarative processes is decidable, and provide a polynomial time approximation that contrasts NP complexity algorithms used in compliance checking for imperative business processes. All-together, this paper presents technical and methodological steps that are being used by legal practitioners in municipal governments in their efforts towards digitalization of work practices in the public sector.",
keywords = "Compliance Checking, Dynamic Condition Response (DCR) graphs, Formal Models of Law, Process Calculi, Refinement",
author = "L{\'o}pez, {Hugo A.} and S{\o}ren Debois and Tijs Slaats and Hildebrandt, {Thomas T.}",
year = "2020",
month = "1",
day = "1",
doi = "10.1007/978-3-030-45234-6_19",
language = "English",
pages = "378--399",
journal = "Lecture Notes in Computer Science",
issn = "0302-9743",
publisher = "Springer Verlag",
note = "23rd International Conference on Fundamental Approaches to Software Engineering, FASE 2020, held as part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2020 ; Conference date: 25-04-2020 Through 30-04-2020",

}

RIS

TY - GEN

T1 - Business process compliance using reference models of law

AU - López, Hugo A.

AU - Debois, Søren

AU - Slaats, Tijs

AU - Hildebrandt, Thomas T.

PY - 2020/1/1

Y1 - 2020/1/1

N2 - Legal compliance is an important part of certifying the correct behaviour of a business process. To be compliant, organizations might hard-wire regulations into processes, limiting the discretion that workers have when choosing what activities should be executed in a case. Worse, hard-wired compliant processes are difficult to change when laws change, and this occurs very often. This paper proposes a model-driven approach to process compliance and combines a) reference models from laws, and b) business process models. Both reference and process models are expressed in a declarative process language, The Dynamic Condition Response (DCR) graphs. They are subject to testing and verification, allowing law practitioners to check consistency against the intent of the law. Compliance checking is a combination of alignments between events in laws and events in a process model. In this way, a reference model can be used to check different process variants. Moreover, changes in the reference model due to law changes do not necessarily invalidate existing processes, allowing their reuse and adaptation. We exemplify the framework via the alignment of laws and business rules and a real contract change management process, Finally, we show how compliance checking for declarative processes is decidable, and provide a polynomial time approximation that contrasts NP complexity algorithms used in compliance checking for imperative business processes. All-together, this paper presents technical and methodological steps that are being used by legal practitioners in municipal governments in their efforts towards digitalization of work practices in the public sector.

AB - Legal compliance is an important part of certifying the correct behaviour of a business process. To be compliant, organizations might hard-wire regulations into processes, limiting the discretion that workers have when choosing what activities should be executed in a case. Worse, hard-wired compliant processes are difficult to change when laws change, and this occurs very often. This paper proposes a model-driven approach to process compliance and combines a) reference models from laws, and b) business process models. Both reference and process models are expressed in a declarative process language, The Dynamic Condition Response (DCR) graphs. They are subject to testing and verification, allowing law practitioners to check consistency against the intent of the law. Compliance checking is a combination of alignments between events in laws and events in a process model. In this way, a reference model can be used to check different process variants. Moreover, changes in the reference model due to law changes do not necessarily invalidate existing processes, allowing their reuse and adaptation. We exemplify the framework via the alignment of laws and business rules and a real contract change management process, Finally, we show how compliance checking for declarative processes is decidable, and provide a polynomial time approximation that contrasts NP complexity algorithms used in compliance checking for imperative business processes. All-together, this paper presents technical and methodological steps that are being used by legal practitioners in municipal governments in their efforts towards digitalization of work practices in the public sector.

KW - Compliance Checking

KW - Dynamic Condition Response (DCR) graphs

KW - Formal Models of Law

KW - Process Calculi

KW - Refinement

UR - http://www.scopus.com/inward/record.url?scp=85084269255&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-45234-6_19

DO - 10.1007/978-3-030-45234-6_19

M3 - Conference article

AN - SCOPUS:85084269255

SP - 378

EP - 399

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

SN - 0302-9743

T2 - 23rd International Conference on Fundamental Approaches to Software Engineering, FASE 2020, held as part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2020

Y2 - 25 April 2020 through 30 April 2020

ER -

ID: 241206773