As the Ethereum ecosystem and its core principles continue to evolve to address data privacy issues, a new proposal suggests adopting a modular compliance strategy as a pathway for aligning public blockchains with the EU's General Data Protection Regulation (GDPR).

On Monday, a proposal drafted by Ethereum community member Eugenio Reggianini recommended using a modular architecture to achieve effective data management and privacy protection.

"By pushing personal data to the edge (wallets and decentralized applications DApps), using off-chain storage with metadata erasure, and splitting roles through encryption, we can centralize GDPR controller responsibilities in a few entities, while the broader network acts merely as processors or out of scope," Reggianini stated.

The transition of Ethereum to a modular architecture could enable the integration of various privacy-enhancing technologies (PETs), which, according to Reggianini, can achieve GDPR compliance in a permissionless blockchain environment.

The proposal outlines several technologies that Ethereum has already integrated or proposed to help reduce personal data exposure, including proto-danksharding (EIP-4844), which limits the lifespan of transaction blobs to about 18 days, enforcing storage minimization.

Zero-Knowledge Succinct Non-Interactive Arguments of Knowledge (zk-SNARKs) can also enhance privacy by allowing validators to confirm succinct cryptographic proofs instead of viewing transaction payloads, significantly reducing the visibility of on-chain data.

Other PET integrations that may assist with GDPR compliance include fully homomorphic encryption and trusted execution environments (TEEs), multi-party computation (MPC), proposer-builder separation (PBS), and peer data availability sampling (PeerDAS).

The proposal breaks down the impact of GDPR into three layers of the Ethereum network: the execution layer, the consensus layer, and the data availability layer.

The execution layer will operate as a processor, only relaying encrypted or blinded data, while the consensus layer will solely verify commitments and zero-knowledge proofs. Finally, the data availability layer under PeerDAS will only store anonymous shards for a limited time period, aligning with GDPR's data minimization principle.

Reggianini claims that by centralizing data control at the application layer and leveraging PETs, Ethereum can protect user privacy without sacrificing its core principles.

Nevertheless, the success of this framework will depend on broad community adoption, developer support, and potential coordination with EU regulators.

Related: Apple researchers believe AI models are still far from achieving AGI-level reasoning capabilities

Original article: “Ethereum Privacy Roadmap Proposes Blockchain Design Compliant with EU GDPR”

免责声明：本文章仅代表作者个人观点，不代表本平台的立场和观点。本文章仅供信息分享，不构成对任何人的任何投资建议。用户与作者之间的任何争议，与本平台无关。如网页中刊载的文章或图片涉及侵权，请提供相关的权利证明和身份证明发送邮件到support@aicoin.com，本平台相关工作人员将会进行核查。