What Does the GDPR Mean for IoToys Data Security and Privacy

At present, Internet of Things (IoT) is a relatively new and promising field where objects can be connected to the Internet and collaborate among them in an intelligent way. The technological potential of IoT demands improvements regarding personal data security and privacy. When connected objects are toys, that is in the Internet of Toys (IoToys) field, security and privacy aspects are even more important since the special nature of final users, in this case children. This paper presents a preliminary study of the European Union General Data Protection Regulation (GDPR) applied to IoToys in particular. The obtained results show the need for greater coordinated efforts among professionals, toy manufacturers and software developers to manage shared personal information with the free and full consent of the final users. The goal is to ensure that IoToys applications are reliable and secure in terms of the processing of personal data.