Evaluation of Compliance Requirements for collaborative business process with process mining and a model of generic compliance controls
DOI:
https://doi.org/10.19153/cleiej.25.2.7Keywords:
Business processes, Compliance requirements, Process Mining, Business processes improvementAbstract
The daily operation of organizations leaves a trail of the execution of business processes (BPs) including activities, events and decisions taken by participants. %, as a basis for process improvement. Compliance requirements add specific control elements to process execution, e.g. domain and/or country regulations to be fulfilled, enforcing order of interaction messages or activities, or security checks on roles and permissions. As the amount of available data in organizations grows everyday, using execution data to detect compliance violations and its causes, can help organizations to take corrective actions for improving their processes and comply to applying rules. Compliance requirements violations can be detected at runtime to prevent further execution, or in a post mortem way using Process Mining to evaluate process execution data against the specified compliance requirements for the process. In this paper we present a BP compliance Requirements Model (BPCRM) defining generic compliance controls that can be used to specify specific compliance requirements over BPs, that are used as input to assess compliance violations with process mining. This model can be seen as a catalogue that includes a set of predefined compliance rules or patterns in one place, helping organizations to specify and evaluate the compliance of their processes.
Downloads
Published
Issue
Section
License
Copyright (c) 2022 Laura González, Andrea Delgado, Juan Canaparo, Fabián Gambetta
This work is licensed under a Creative Commons Attribution 4.0 International License.
CLEIej is supported by its home institution, CLEI, and by the contribution of the Latin American and international researchers community, and it does not apply any author charges whatsoever for submitting and publishing. Since its creation in 1998, all contents are made publicly accesibly. The current license being applied is a (CC)-BY license (effective October 2015; between 2011 and 2015 a (CC)-BY-NC license was used).