DOOF – an Open Source Orchestration Framework for Decentralized Consent Management

DOOF stands for Data Ownership Orchestration Framework. It is a framework developed for NGI Trustchain Project within a broader Next Generation Internet scheme of the EU in order to address a lack of decentralization in consent management regarding users’ sharing of their data. The aim of DOOF is to revolutionize personal data governance and normalise the deployment of consent management and privacy enhancing technologies. It uniquely enables individuals to control their rights over data sharing, fostering greater trust and regulatory compliance, essential for building a resilient and transparent data economy.
DOOF targets the gap in current centralized consent management, where GDPR and Data Act demand seamless data exchange and regulatory compliance. Yet the sharing and consent management regarding users’ data is centralized – a responsibility of the data intermediary – which comes with great costs and liabilities.
With DOOF, Ecosteer aims to separate and decouple the layer of physical data transferring from the layer of consent management. DOOF offers companies a framework that allows them to easily adopt Privacy Enhancing Technologies (PETs) for the actual sharing of data and enforcement of users’ decisions.
The framework consists of a set of SDKs, libraries and a Smart Contract for decentralised consent management. The main component of the framework is a worker pipeline, consisting of extensible, plug-in processors. This pipeline contributes to the low-code movement, offering a framework that can be easily adapted to different business needs. Companies can easily build verticals on this existing framework by just extending some of its functionalities.
This talk will focus on the concept of decentralized consent management as well as pipeline-based orchestration framework, outlining the process of creating a novel, re-usable and extensible open-source project.