For instance, we could use context properties to mark each element that handles personal data,
and to mark each element that is is used in the "Create Report" workflow. Then, a CoCon could
express the privacy policy:
All elements that handle personal data must be inaccessible to those elements that are
used in the "Create Report" workflow.