Tales from the Dark Side: Privacy Dark Strategies and Privacy Dark Patterns

Abstract Privacy strategies and privacy patterns are fundamental concepts of the privacy-by-design engineering approach. While they support a privacy-aware development process for IT systems, the concepts used by malicious, privacy-threatening parties are generally less understood and known. We argue that understanding the “dark side”, namely how personal data is abused, is of equal importance. In this paper, we introduce the concept of privacy dark strategies and privacy dark patterns and present a framework that collects, documents, and analyzes such malicious concepts. In addition, we investigate from a psychological perspective why privacy dark strategies are effective. The resulting framework allows for a better understanding of these dark concepts, fosters awareness, and supports the development of countermeasures. We aim to contribute to an easier detection and successive removal of such approaches from the Internet to the benefit of its users.

Download Full-text

Mot bättre service – utveckling av Folkpensionsanstaltens e-tjänster

Klart språk i Norden ◽

10.7146/ksn.v0i0.20424 ◽

2014 ◽

Vol 15 (7) ◽

Author(s):

Marjukka Turunen

Keyword(s):

Positive Feedback ◽

Social Insurance ◽

Personal Data ◽

Network Services ◽

The Internet ◽

Internet Services ◽

Network Service ◽

Service Channel ◽

It Systems ◽

Renewal Project

In Finnish Social Insurance Institution (Kela) all the operational IT-systems and network services will be renewed during the next ten years. The renewal project is part of Kela´s strategy. What customers need, is the key to all the renewal projects because customers play an important role in developing the services. In the Arkki project the focus is mainly on network services. Kela is investing in its network service channel because these services have been increasingly popular amongst customers. Through the internet services customers can e.g., check their personal data on benefits, apply for benefits and calculate the amounts of benefits. Students, families and unemployed are the biggest customer groups that use Kela´s internet services. Customers have given Kela positive feedback for the internet services.

Download Full-text

The Effects of Applying Privacy by Design to Preserve Privacy and Personal Data Protection in Mobile Cloud Computing: An Exploratory Study

Symmetry ◽

10.3390/sym12122039 ◽

2020 ◽

Vol 12 (12) ◽

pp. 2039

Author(s):

Hussain Mutlaq Alnajrani ◽

Azah Anir Norman

Keyword(s):

Cloud Computing ◽

Data Protection ◽

Mobile Cloud Computing ◽

Personal Data ◽

Perceived Barriers ◽

Perceived Threat ◽

Mobile Cloud ◽

Privacy By Design ◽

Personal Data Protection ◽

It Systems

Mobile cloud computing (MCC) is a domain that stemmed from advances in mobile technology and cloud computing. Although debate continues about the best strategies to preserve privacy and personal data protection in MCC, it is essential to explore the effects of applying privacy by design (PbD) to preserve privacy and personal data protection in MCC. PbD is a general philosophy that demonstrates privacy should not be overviewed as an afterthought, but rather as a first-class requirement in the design of IT systems. This study explores the effects of applying PbD to preserve privacy and personal data protection in MCC, and is focused on the privacy of personal data. In this exploration, a framework using PbD has been demonstrated, and seven hypotheses were formulated. Moreover, a survey was implemented where 386 responses were used to test the formulated hypotheses. The results of this study supported the perceived benefits, cues to action of PbD, and perceived threat are positively and directly related to privacy and personal data protection behavior in MCC. Moreover, the results supported that the perceived barriers are negatively and directly related to privacy and personal data protection behavior in MCC. Overall, the results support the utilization of PbD to preserve privacy and personal data protection in MCC and encourage the practitioners to utilize PbD to preserve privacy and personal data protection in MCC.

Download Full-text

Importance of Personal Data Protection Law for Commercial Air Transport

Transactions on Aerospace Research ◽

10.2478/tar-2017-0004 ◽

2017 ◽

Vol 2017 (1) ◽

pp. 35-44

Author(s):

Dawid Zadura

Keyword(s):

Data Protection ◽

Public Information ◽

Personal Data ◽

Air Transport ◽

Civil Aviation ◽

Aviation Industry ◽

Personal Data Protection ◽

It Systems ◽

Data Protection Law ◽

The Law

Abstract In the review below the author presents a general overview of the selected contemporary legal issues related to the present growth of the aviation industry and the development of aviation technologies. The review is focused on the questions at the intersection of aviation law and personal data protection law. Massive processing of passenger data (Passenger Name Record, PNR) in IT systems is a daily activity for the contemporary aviation industry. Simultaneously, since the mid- 1990s we can observe the rapid growth of personal data protection law as a very new branch of the law. The importance of this new branch of the law for the aviation industry is however still questionable and unclear. This article includes the summary of the author’s own research conducted between 2011 and 2017, in particular his audits in LOT Polish Airlines (June 2011-April 2013) and Lublin Airport (July - September 2013) and the author’s analyses of public information shared by International Civil Aviation Organization (ICAO), International Air Transport Association (IATA), Association of European Airlines (AEA), Civil Aviation Authority (ULC) and (GIODO). The purpose of the author’s research was to determine the applicability of the implementation of technical and organizational measures established by personal data protection law in aviation industry entities.

Download Full-text

Digitizing and Disclosing Personal Data: The Proliferation of State Criminal Records on the Internet

Law & Social Inquiry ◽

10.1017/lsi.2020.37 ◽

2021 ◽

pp. 1-31

Author(s):

Sarah E. Lageson ◽

Elizabeth Webster ◽

Juan R. Sandoval

Keyword(s):

Personal Data ◽

The United States ◽

Criminal Court ◽

The Internet ◽

Criminal Record ◽

Criminal Records ◽

Public Records ◽

Internet Privacy ◽

Court Proceedings ◽

Public Disclosures

Digitization and the release of public records on the Internet have expanded the reach and uses of criminal record data in the United States. This study analyzes the types and volume of personally identifiable data released on the Internet via two hundred public governmental websites for law enforcement, criminal courts, corrections, and criminal record repositories in each state. We find that public disclosures often include information valuable to the personal data economy, including the full name, birthdate, home address, and physical characteristics of arrestees, detainees, and defendants. Using administrative data, we also estimate the volume of data disclosed online. Our findings highlight the mass dissemination of pre-conviction data: every year, over ten million arrests, 4.5 million mug shots, and 14.7 million criminal court proceedings are digitally released at no cost. Post-conviction, approximately 6.5 million current and former prisoners and 12.5 million people with a felony conviction have a record on the Internet. While justified through public records laws, such broad disclosures reveal an imbalance between the “transparency” of data releases that facilitate monitoring of state action and those that facilitate monitoring individual people. The results show how the criminal legal system increasingly distributes Internet privacy violations and community surveillance as part of contemporary punishment.

Download Full-text

The dark side of the internet regarding sexual education

International Journal of Impotence Research ◽

10.1038/s41443-020-00398-0 ◽

2021 ◽

Author(s):

Emre Altintas ◽

Murat Gul

Keyword(s):

Sexual Education ◽

Dark Side ◽

The Internet

Download Full-text

Personal data and the internet of things

Communications of the ACM ◽

10.1145/3322933 ◽

2019 ◽

Vol 62 (6) ◽

pp. 32-34 ◽

Cited By ~ 2

Author(s):

Thomas Pasquier ◽

David Eyers ◽

Jean Bacon

Keyword(s):

Internet Of Things ◽

Personal Data ◽

The Internet ◽

The Internet Of Things

Download Full-text

Development Process for Self-adaptive Applications of the Internet of Health Things based on Movement Patterns

10.1109/ichi52183.2021.00073 ◽

2021 ◽

Author(s):

Evilasio Costa Junior ◽

Rossana Maria de Castro Andrade ◽

Leonardo Sampaio Rocha

Keyword(s):

Development Process ◽

Movement Patterns ◽

The Internet ◽

Adaptive Applications ◽

Self Adaptive

Download Full-text

A REVIEW ON OVERVIEW OF ETHICAL HACKING

International Journal of Engineering Applied Sciences and Technology ◽

10.33564/ijeast.2021.v06i04.051 ◽

2021 ◽

Vol 6 (4) ◽

Author(s):

Vaishnavi Bhagwat Savant ◽

Rupali D. Kasar ◽

Priti B. Savant

Keyword(s):

Cloud Computing ◽

Credit Card ◽

Dark Side ◽

The Internet ◽

The People ◽

The World ◽

Private Citizens ◽

E Mail

The explosive growth of the Internet has brought many good things such as E-commercebanking, E-mail, cloud computing, but there is also a dark side such as Hacking, Backdoors, Trapdoors etc. Hacking is the first big problem faced by Governments, companies, and private citizens around the world. Hacking means reading email’s of someone, stealing passwords, stealing credit card numbers etc. An ethical hacker is one who can help the people who are suffered by this hackings. This paper describes about Ethical hackers, it’s types and phases of hacking

Download Full-text

Fraud, Economic versus Social-Psychological Losses, and Sustainable E-Auction

Sustainability ◽

10.3390/su10093130 ◽

2018 ◽

Vol 10 (9) ◽

pp. 3130

Author(s):

Xiaobing Zhang ◽

Fu-Sheng Tsai ◽

Chih-Chen Lin ◽

Ya-Fang Cheng ◽

Kun-Hwa Lu

Keyword(s):

Risk Management ◽

Network Externality ◽

Economic Losses ◽

The Internet ◽

Knowledge Gap ◽

Social Psychological ◽

Multiple Dimensions ◽

Equal Importance ◽

Paper Form ◽

Practical Implications

As compared to the economic losses, social and psychological losses are of equal importance in discussing the losses when encountering fraud. Taking advantage of a perspective paper form (i.e., free writing style with a mix of description, analysis, and comments) with in-depth discussions and well-developed propositions, we combine considerations from the knowledge gap, platform quality, and risk management to discuss the comparative seriousness of different fraud-caused losses. The conceptual model mainly articulates on a series of relationships among different degrees of knowledge gap, platform quality, and risk management in predicting the various combinative losses in the economic, social, and psychological aspects. Propositions follow. First, when the knowledge gap is higher, the economic losses of being cheated on the internet will be higher, while lower in social and psychological losses. Second, when perceived platform quality is higher, the economic losses of being cheated on the internet will be lower, while higher in social and psychological losses. Third, when platform risk management is better, all aspects of being cheated on the internet will be lower. Based on the assumption of network externality, we also argue that the multiple dimensions of fraud-caused losses may damage e-auction sustainability. Theoretical and practical implications will be discussed.

Download Full-text

IDENTIFICATION DATA MANAGEMENT: LEGAL REGULATION AND CLASSIFICATION

Polonia University Scientific Journal ◽

10.23856/4325 ◽

2021 ◽

Vol 43 (6) ◽

pp. 198-203

Author(s):

Oleksii Kostenko

Keyword(s):

Information And Communication Technologies ◽

Social Relations ◽

Driving Forces ◽

Personal Data ◽

Legal Regulation ◽

The Internet ◽

Personal Data Protection ◽

Protection Information ◽

Use Of The Internet ◽

Almost All

The scale, speed and multi-vector development of science and technology are extremely effective in influencing legal, economic, political, spiritual, professional and other social relations. The development of information and communication technologies, the use of the Internet, the creation, storage, transmission, processing and management of information became the driving forces of the new scientific and technological revolution. This facilitates the introduction of technologies for the transmission and use of information in digital form in almost all spheres of public life, namely text data, photo, audio, video images, which are transmitted in various ways via the Internet and other systems and means of communication. One of the key elements of data transmission technologies and systems is the availability of information by which it is possible to identify their subjects and objects by their inherent identification attributes. In Ukrainian legislation, in particular in the Law of Ukraine «On Personal Data Protection», information or a set of information about an individual who is or can be identified specifically is defined as personal data. However, despite its modernity, this law still contains a number of shortcomings and uncertainties, both in terminology and in the legal mechanisms for working with data by which a person can be identified, i.e. identification data.

Download Full-text