Post category: Freedom & privacy

Event: “Website Privacy Extreme” (16 May in Helsinki/FIN)

Wed 16
May
18:0000530 Helsinki
Finland

An experimental hacking event for active webizens concerned about privacy first and legal compliance second. The goal is to take it to the extreme: challenging 'common practices' and pushing the boundaries.

Collaborative list of GDPR-compliant DPA contracts

One of many GDPR tasks before May 25 is to sign Data Processing Agreements with third-party services you use for your website, newsletter, etc. For an easy start, we created a collaborative online list to provide an easy starting point – please use for your benefit! …and contribute back?

“Working Draft” podcast on privacy and GDPR (in German)

Baltasar, Joschi and I discuss importance and implications of the GDPR for web designers and developers - on the Working Draft podcast, hosted by Hans Christian Reinl.

Feb 2018:

Bookmark: GDPR: 10 examples of best practice UX for obtaining marketing consent

I was delighted to find this blog post, reviewing recent examples of UX solutions for GDPR-compliant marketing consent. This is the kind of reviews designers concerned with privacy need, in order to generate an industry-wide debate about (slowly emerging) practices and work out optimal solutions over time.

Challenge GDPR: undesirable effort or entrepreneurial opportunity?

The efficient combination of legal risk management and privacy-sensitive design ensures a good ROI for GDPR compliance efforts.

Eight valuable insights from a discussion panel on opportunities of the GPDR

A high-profile expert panel met in Berlin on 31 Jan to discuss the nature and risks, but above all the rewards and opportunities of the GDPR. This blog post summarizes eight key thoughts emerging from the presentations and discussions at this inspirational and positively spirited discussion of the new privacy regulation. Hosted by privacy messenger […]

Jan 2018:

Bookmark: When Trading Track Records Means Less Privacy

Just anonymising data does not mean it is no longer personal data - more often than not it needs to be treated with similar care as data that carries individual identifiers.

The GDPR: not a revolution, but an evolution – its core is similar to the 1995 directive, but now enforced more strictly; figure from “The GDPR is a call to practice ethical design”

Bookmark: Apps, Trackers, Privacy, and Regulators – A Global Study of the Mobile Tracking Ecosystem

Particularly relevant for privacy design is the authors' category of ATS-C: third-party services that may process unique identifiers despite their primary purpose is not tracking as such.

Bookmark: GDPR consent design: how granular must adtech opt-ins be?

The wireframes presented in this article should make every UX designer cringe: Johnny Ryan of PageFair embarks on a step-by-step journey through various GDPR requirements and Article 29 Working Party opinions/guidelines, illustrating how the wide range of purposes adtech companies process personal data for would—when taking the law as literal as possible—require consent dialogues of […]

The GDPR is a call to practice ethical design

Internalizing the history and philosophy behind the General Data Privacy Regulation is key for every designer in privacy-critical contexts. The GDPR is not a law that specifies detailed demands for consent forms or the like—it is a change agent for embracing ethical principles in dealing with personal data, across the EU and beyond.

Reposting a Tweet by Smashing Magazine

Amen! "While I feel that performance has finally found its place on the agenda in web projects, it’s about time to push privacy, accessibility and ethics to the spotlight as well. Still way too often forgotten or dismissed for the sake of business."

Nov 2017:

Talk: “Designing away the cookie disclaimer”

My lightning talk from the beyond tellerrand Berlin warm-up on 2017-11-06: privacy as a core aspect of ethical UX design. "Don’t ask yourself 'does what we are doing require a cookie banner', but instead do something that respects the spirit of these privacy rules in the first place."

PrivacyBadger un-tracks Twitter’s t.co links

I'm in awe! Just noticed that PrivacyBadger, the EFF's browser privacy tool, has already for a while been replacing all t.co URLs with the canonical URL of the real link target in my browser.

The significance of the reformation in today’s digital world?

"Reformatory" thinking, the idea that no individual should be subject to external control and limitation of their freedoms, is probably needed in 2017 just as much as it was in 1517. I spent a few hours on the 500th anniversary day of Luther's reformation to familiarize myself with the philosophical thoughts by theologist Johanna Haberer.