An experimental hacking event for active webizens concerned about privacy first and legal compliance second. The goal is to take it to the extreme: challenging ‘common practices’ and pushing the boundaries.
Category "Privacy" (2/3)
From discussing the societal impact of privacy (and lack thereof) to design strategies and tools for privacy-by-design. Strongly biased towards a human-rights approach, and commonly from a European (incl. GDPR) perspective. While I may discuss legal aspects as well, I am not a lawyer (#IANAL).
-
Dear interwebz, @sebastiangreger, @l_a_w_4_2 and I started to compile a public list of services and their resources around #GDPR compliant data processing agreements https://tollwerk.github.io/data-processing-agreements/ … Pls help us grow it big! PRs & RTs highly appreciated #DPA #ADV #DSGVO
—Joschi Kuphal One of many GDPR tasks before May 25 is to sign Data Processing Agreements with third-party services you use for your website, newsletter, etc. For an easy start, we created a collaborative online list to provide an easy starting point - please use for your benefit! …and contribute back?
-
Baltasar, Joschi and I discuss importance and implications of the GDPR for web designers and developers - on the Working Draft podcast, hosted by Hans Christian Reinl.
-
The efficient combination of legal risk management and privacy-sensitive design ensures a good ROI for GDPR compliance efforts.
-
A high-profile expert panel met in Berlin on 31 Jan to discuss the nature and risks, but above all the rewards and opportunities of the GDPR. This blog post summarizes eight key thoughts emerging from the presentations and discussions at this inspirational and positively spirited discussion of the
-
All personal data stored may eventually pose a risk to somebody. Three stories of how data stored or shared can have unwanted consequences.
-
The design takes into account privacy-conscious users with cookies disabled. When closing the notification popup, the user learns that by using an alternative URL, they can reach a version of the site without the notification
-
An important report by the Ethics Advisory Group (EAG) of the European Data Protection Supervisor (EDPS): This report seeks to propose terms and concepts that contribute to a constructive debate about the future of ethics in a full-fledged digital society. It identifies and clarifies some of the
-
The “Digital Standard”, openly maintained under a CC-BY-4.0 license on Github, is an ambitious project to establish shared values in development of software-based products: Our goals are to enable consumer organizations to test, evaluate, and report on whether new products protect
-
Pre-GDPR research paper concluding that consent is always needed for behavioural tracking; This paper argues that in most circumstances the only available legal basis for the processing of personal data for behavioural targeting is the data subject’s unambiguous consent. According to the
-
Summarizing this classic oversight by a major newsletter service provider, as responsibly disclosed by Terence Eden: The referrer (or: referer, as it is falsely spelled in the HTTP protocol) string of a browser coming from a newsletter contains the ID of the subscriber Website admin can open the
-
Internalizing the history and philosophy behind the General Data Privacy Regulation is key for every designer in privacy-critical contexts. The GDPR is not a law that specifies detailed demands for consent forms or the like—it is a change agent for embracing ethical principles in dealing with personal data, across the EU and beyond.
-
The Belgian DPAs information website on privacy for young people (in French/Dutch) provides information material for young people and parents on how to protect their privacy. A nice example of educational material in the field of online privacy. Also has a very stylish “cookie banner”
-
Third-party scripts are probably the #1 cause of poor performance and bad UX on the web. Chris Coyer collects a range of sources that explain why third-party scripts on websites – and handing control over them to the marketing department – is bad for performance, security and privacy.
-
While I feel that performance has finally found its place on the agenda in web projects, it’s about time to push privacy, accessibility and ethics to the spotlight as well. Still way too often forgotten or dismissed for the sake of business.
—Smashing Magazine Amen!
-
My lightning talk from the beyond tellerrand Berlin warm-up on 2017-11-06: privacy as a core aspect of ethical UX design. “Don’t ask yourself ‘does what we are doing require a cookie banner’, but instead do something that respects the spirit of these privacy rules in the first place.”
-
I’m in awe! Just noticed that PrivacyBadger, the EFF’s browser privacy tool, has already for a while been replacing all t.co URLs with the canonical URL of the real link target in my browser.
-
“Reformatory” thinking, the idea that no individual should be subject to external control and limitation of their freedoms, is probably needed in 2017 just as much as it was in 1517. I spent a few hours on the 500th anniversary day of Luther’s reformation to familiarize myself with the philosophical thoughts by theologist Johanna Haberer.
-
It’s so important that we understand the human impact of what we’re building and where we’re coming from. It is more than shiny buzzwords.
—Laura Kalbag It’s so important that we understand the human impact of what we’re building and where we’re coming from. It is more than shiny buzzwords.
-
The issue with tracking is not only one of obvious trackers but that, at least in theory, every piece of content loaded from other sites than the originating domain enables some degree of tracking.
-
“Democracy” by David Bernet is an exceptional film. Who would think that the birthing of an EU law could provide enough drama to power a feature-length documentary, given that the Brussels bureaucracy machine is commonly seen as a closed, cold and robotic community out of touch
-
I wrote about how our lives are under the control of tech companies & what it means. Please read it on your device. https://www.theguardian.com/commentisfree/2017/may/12/wake-up-amazon-google-apple-facebook-run-our-lives
—HannahJane Parkinson A great article, can’t decide which parts to quote - pls read the whole thing. And start working on alternative futures tmrw (designers!)
I quit Facebook in 2013, and as a direct result of this, I have fallen out of touch with many friends. People have had babies, people have got married and divorced and other people have died and I have been absolutely none the wiser, because I don’t keep up with Facebook. Sure, that’s my own fault, but I was tired of the banalities of the medium and the time it was taking up in my life, and the concern that Facebook was following me everywhere, like the eyes of an Old Master painting.
It is time now for two things: for people to wake up and realise how much our lives are dominated by such a small number of Silicon Valley bros, one hand in their jean pocket announcing their next move, and for tech companies to acknowledge their power and influence and become truly accountable.
-
“Privacy settings” in social web services are only a small part of the complex social phenomenon that is privacy; looking at the 2006 “Privacy paradox” and the 2014 “New privacy paradox” could help leading the discussion on privacy in tech from a far more sociological rather than mechanical perspective.