GDPR Compliant Audit Log Management System with Blockchain

Audit log files can contain both personal data and system actions. Therefore, storing audit log files in accordance with the General Data Protection Regulation (GDPR) has become a legal obligation. In this paper, we propose a GDPR-compliant log storage system called Solid Log Chain (SLC). The goal of Solid Log Chain is to store audit logs and ensure the confidentiality and immutability of log data while meeting GDPR obligations. We have developed SLC by combining existing technologies with blockchain and using it in innovative ways. We have developed a data structure that allows only personal data to be deleted without destroying data integrity. Solid Log Chain is intended to be an alternative to expensive hardware-based solutions. We describe the design concept and architecture of the SLC and evaluate its performance in terms of latency and payload size.