Operationalization of Privacy and Security Requirements for eHealth IoT Applications in the Context of GDPR and CSL.