Free tools and resources for Data Protection Officers!

Tag Archives for " privacy by default "

Privacy: A Quick Overview for App Designers

Privacy by design and by default is something that all developers will have learn. Here are some basic points app designers should know and take into consideration:

  • Privacy isn’t scary: it’s an opportunity to earn people’s trust.
  • This is about how we handle personal data.
  • Some data are sensitive, and we need explicit consent before collecting them.
  • System permissions for apps are not the same as explicit consent.
  • Everyone is entitled to certain privacy rights: to be informed (Notice), to see the data we collect (Access), to take their data elsewhere (Portability), and to have their data corrected or deleted (Right to Be Forgotten).
  • Here are some design patterns we can use to respect people’s privacy in our mobile apps.

Source: Privacy: A Quick Overview for App Designers – Prototypr

EDPS launches ‘Privacy by Design’ contest for health apps

The European Data Protection Supervisor (EDPS) has announced the launch of a contest to design mobile health (m-health) applications implementing “privacy by design and by default” principles.

The aim is to create best practices that may constitute a reference for privacy-friendly development of mobile apps and give users more control over their personal information. Participants are challenged to develop a useful and user-friendly m-health application at the forefront of the implementation of the data protection by design and by default principle, as required under the GDPR. The deadline for submissions is the end of June.

Source: EDPS launches ‘Privacy by Design’ contest for m-health apps – Telecompaper

Data protection impact assessments and data protection by default and by design

In 2016, the Westin Research Center published a series of articles identifying our analysis of the top 10 operational impacts of the European Union’s General Data Protection Regulation. Now, with the May 25, 2018, GDPR implementation deadline looming, the IAPP is releasing a companion series discussing the common practical organizational responses that our members report they are undertaking in anticipation of GDPR implementation.

This fourth installment in the 10-part series addresses privacy risk analysis, including, importantly, formalized risk management processes such as data protection impact assessments (known as DPIAs), as well as the newly legislated principles of data protection by default and by design.

Source: Top 10 Operational Responses to the GDPR – Part 4: Data protection impact assessments and data protection by default and by design

Privacy by default in online services

Privacy as the default setting is one of the “seven foundational principles” of privacy by design, a concept developed back in the ’90s. PbD has been widely recognized in the business environment and subsequently became part of various legal frameworks.

Source: Privacy by default in online services

>