Gerl, ArminMeier, BiancaDavid, KlausGeihs, KurtLange, MartinStumme, Gerd2019-08-272019-08-272019978-3-88579-688-6https://dl.gi.de/handle/20.500.12116/25001On 25th May 2018, the EU-wide General Data Protection Regulation (GDPR) came into force in order to strengthen the rights of Data Subjects. Although the GDPR specifies the required information, which has to be presented to a Data Subject, it can still be argued for a lack of transparency due to unfavorable presentation of the privacy policy. Furthermore, no systematic approach for the enforcement of privacy policies in technical systems is deployed. These issues are tackled by the both human- and machine-readable Layered Privacy Language (LPL), which models legal privacy policies. This work introduces an extension for LPL to comply with Art. 12 - 14 GDPR. Additionally, user interface prototypes will be introduced to allow the creation of LPL privacy policies by the Data Protection Officer as well as a structured presentation of the LPL privacy policy for web-applications.enGDPRInformed ConsentLayered Privacy LanguagePrivacy PolicyPrivacy ManagementText/Conference Paper10.18420/inf2019_511617-5468