Phase 2 Data Privacy Plan (DPP)— Safe Trips in a Connected Transportation Network ITS4US Deployment Project

Wakhisi, Kofi; Foster, Bennett; Guensler, Randall; Guin, Angshuman; Okunieff, Polly; Smusz-Mengelkoch, Natalie · 2023 · ROSA P / United States. Department of Transportation. Intelligent Transportation Systems Joint Program Office (ITS JPO)

archive: archived pipeline: cataloged verified

Get this paper ↗ (full text — opens at the source; we link to it, we don't host it)

Summary

This document presents the Phase 2 Data Privacy Plan (DPP) for the Georgia Department of Transportation’s “Safe Trips in a Connected Transportation Network” (ST-CTN) project, part of the ITS4US Deployment Program. The ST-CTN initiative aims to enhance transportation safety, mobility, and accessibility for underserved populations, including older adults, individuals with disabilities, and those with limited English proficiency. The system integrates connected vehicle technologies, transit signal priority, machine learning, and predictive analytics to support complete, multimodal trips. The DPP addresses the critical need to protect Personally Identifiable Information (PII) and Sensitive PII collected during these interactions, ensuring that data handling mitigates risks of harm to individuals through improper disclosure or use. The plan outlines a comprehensive privacy approach centered on data classification, access control, and security assessments. Data within the ST-CTN system are categorized into four access levels: Open (publicly available, anonymized/aggregated), Operational (real-time system data), Proprietary (licensed third-party data), and Research/PII Certification (data containing PII requiring Institutional Review Board approval). The document details specific data flows between subsystems, such as the G-MAP mobile application, SidewalkSim, and connected vehicle infrastructure. Security is evaluated using a Confidentiality, Integrity, and Availability (CIA) framework aligned with NIST standards. Datasets are assigned security classes ranging from 1 to 5 based on the potential impact of unauthorized disclosure, modification, or disruption. For instance, raw trip options and mobile app logs containing user locations and identities are classified with high confidentiality impact and Security Class 4 or 3, whereas open network data like road geometry are assigned low confidentiality and Security Class 1. Key findings include the identification of specific datasets requiring strict protection, such as customer names, home/work locations, and trip feedback reports, which constitute PII. The plan establishes that access to PII-certified data is restricted to IRB-approved processes and justified operational purposes. Technical and policy controls are defined to enforce these restrictions, including encryption, logging, monitoring, and breach response procedures. The document also analyzes hardware security for secure compute and storage servers. The significance of this DPP lies in its structured methodology for balancing advanced transportation innovation with rigorous privacy protections. By clearly defining data ownership, access requirements, and risk mitigation strategies, the plan ensures that the ST-CTN deployment can safely leverage sensitive traveler data to improve accessibility and safety without compromising individual privacy or violating security standards.

Key finding

The ST-CTN project implements a structured data privacy framework that classifies datasets by access level and applies specific security controls, including CIA assessments and restricted access protocols, to protect PII and ensure system integrity.

Methodology

other

Provenance

The full processing record for this entry. Every stage of this paper's journey through the pipeline is logged — what ran, with which tool and model, how many attempts it took, and when it last completed. Discovered via bulk_ingest_rosap on 2026-05-23 (12 acquisition events logged).

StageOutcomeToolModelPromptAttemptsCompleted
discover success rosap 2 2026-05-23
archive success 1 2026-05-23
extract success cached 2 2026-06-10
clean success 1 2026-06-01
chunk success 1 2026-06-01
embed success 1 2026-06-02
enrich success 1 2026-05-23
promote success 1 2026-05-23
summarize success llm qwen3.6-27b-prismaquant summ-v5 9 2026-06-10
tag success vector_similarity 24 2026-06-11
verify success 2 2026-06-10

Summary generated by qwen3.6-27b-prismaquant on 2026-06-10; verification: verified.

Topics

Ranked by relevance to this paper. Hover a topic for its definition.

Information type

What kind of knowledge this paper contributes, grouped by family — independent of topic (what it is about) and method (how it was studied).