GR Semicolon EN

Show simple item record

dc.contributor.author
Dilaveraki, Kalliopi-Kyriaki Jr
en
dc.date.accessioned
2016-03-23T13:47:49Z
dc.date.available
2016-03-24T01:00:19Z
dc.date.issued
2016-03-23
dc.identifier.uri
https://repository.ihu.edu.gr//xmlui/handle/11544/14449
dc.rights
Default License
dc.title
Granting consent in mobile applications. A case study on the consent-granting mechanisms and the Privacy Policy documents of Facebook, Google Search, Google Maps, Foursquare and WhatsApp mobile applications in Android and iOS
en
heal.type
masterThesis
el
heal.classification
Data Protection
en
heal.keywordURI.LCSH
Data Protection
heal.keywordURI.LCSH
Data protection--Law and legislation
heal.keywordURI.LCSH
Data structures (Computer science)
heal.keywordURI.LCSH
Private security services
heal.keywordURI.LCSH
Private security services--Data processing
heal.keywordURI.LCSH
Private security services--Law and legislation
heal.keywordURI.LCSH
Privacy, Right of.
heal.keywordURI.LCSH
Privacy, Right of--Social aspects
heal.keywordURI.LCSH
Facebook (Electronic resource)
heal.keywordURI.LCSH
Facebook (Electronic resource)--Law and legislation
heal.keywordURI.LCSH
Google Maps
heal.keywordURI.LCSH
Google+ (Electronic resource)
heal.language
en
el
heal.access
free
el
heal.license
http://creativecommons.org/licenses/by-nc/4.0
el
heal.references
Treaties and Directives EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION, Charter of fundamental rights of the European Union (2002/C 364/01). EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION, Directive 95/46/ EC on the protection of individuals with regard to the processing of personal data and the free movement of such data (1995) OJ L281/31 (23.11.1995). EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION , Directive 2002/58/EC, concerning the processing of personal data and the protection of privacy in the electronic communications sector (2002) OJ L202/37 (31.07.2002). UNITED STATES DEPARTMENT OF STATE, The Privacy Act of 1974 (1974) Case Law COURT OF JUSTICE OF THE EUROPEAN UNION, C - 33/78 Sinifar SA v Saae - Ferngas AG (1978) ECR 02183. COURT OF JUSTICE OF THE EUROPEAN UNION, C - 131/12 Google Spain and INC v. Agencia Espanola de proteccion de d atos and Mario Costeja Gonzalez (2012) ECLI:EU:C:2014:317 SOUPREME COURT OF THE UNITED STATES, Riley v.California 573 US (2014) Investigations by Data Protection Authorities - 62 - DUTCH DATA PROTECTION AUTHORITY , “Investigation into the processing of personal data for the ‘whatsapp’ mobile application by WhatsApp Inc., Report on the definitive findings, January 2013” (2013) 25, 26 available at : https://cbpweb.nl/sites/default/files/downloads/mijn_privacy/rap_2013 - whatsapp - dutchdpa - final - findings - en.pdf OFFICE OF THE PRIVACY COMMISSIONER OF CANADA, “Findings under the Personal Informati on Protection and Electronic Documents Act (PIPEDA) PIPEDA report of findings #2014 - 008” (2014). PRIVACY COMMISSION OF BELGIUM , “Recommendation no. 04/2015 of 13 May 2015” relating to 1) Facebook, 2) Internet and/or Facebook users, as well as 3) users and providers of Facebook services, particularly plug - ins”(2015). Opinions, Recommendations and Working Documents of the Article Data Protection Working Party and Recommendations of other Data Protection Authorities ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 02/2013 on apps on smart devices, WP 202" (2013). ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 04/2012 on Cookie Consent Exemption WP 194” (2012). ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 15/2011 on the definition of consent WP187” (2011). ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 13/2011 on geolocation services on smart mobile devices, WP 185"(2011). ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 8/2010 on applicable law WP 179” (2010). - 63 - ARTICLE 29 DATA PROTECT ION WORKING PARTY, "Opinion 2/2010 on online behavioural advertising, WP 171" (2010.) ARTICLE 29 DATA PROTECTION WORKING PARTY, "Opinion 10/2004 on More Harmonised Information Provisions WP 100” (2004). ARTICLE 29 DATA PROTECTION WORKING PARTY, "Working document on determining the international application of EU data protection law to personal data processing on the Internet by non - EU based web sites WP 56”(2002). FTC Staff Report “Mobile Privacy Disclosures, Building Trust Through Transparency”, (2013) 1, available at https://www.ftc.gov/sites/defa ult/files/documents/reports/mobile - privacy - disclosures - building - trust - through - transparency - federal - trade - commission - staff - report/130201mobileprivacyreport.pdf OFFICE OF THE PRIVACY COMMISSIONER OF CANADA, OFFICE OF THE INFORMATION AND PRIVACY COMMISSIONER OF ALBERTA, OFFICE OF THE INFORMATION&PRIVACY COMMISSIONER FOR BRITISH COLUMBIA “Seizing Opportunity: Good Privacy Practices for Developing Mobile Apps” Books GUTWIRTH S, POULLET Y AND DE HERT P, "Data Protection in a Profiled World” ( Springer 2010) KOSTA E, “Consent in European Data Protection Law” (Martinus Nijhoff Publishers 2013) Articles - 66 - Google Privacy &Terms, available at https:/ /www.google.com/intl/en/policies/privacy/ (accessed on 31/01/2016). Google Public Policy Blogspot, http://googlepublicpolicy.blogspot.nl/ (accessed on 31/01/2016). Google Official Blog, https://googleblog.blogspot.nl/ (accessed on 31/01/2016). Facebook Help Centre, https://www.facebook.com/help/164968693837950 (accessed on 28/ 01/2016). Google Company Locations, https://www.google.com/about/company/facts/locations (accessed on 31/01/2016). Google Play Developer Programme Policies, https://play.google.com/intl/ALL_uk/about/developer - content - policy.html (accessed on 31/01/2016.) Apple Store Review Guidelines, https://developer.apple.com/app - store/review/guidelines/#terms - conditions (accessed on 31/01/2016). MEDIATI N, “ Android Marshmallow vs. iOS9: Which has the better app permissions system?” available at http://www.greenbot.com/article/3005331/android/android - marshmallow - vs - ios - 9 - which - has - the - better - app - permissions - system.html (accessed on 06/02/2016). WEINSTEIN M, "Is privacy dead?", http://www.huffingtonpost.com/mark - weinstein/internet - privacy_b_3140457.html , accessed on 06/01/2016 ) . "Smartphone OS Market Share, 2015 Q2", http://www.idc.com/prodserv/smartphone - os - market - share.jsp (accessed 25/11/2015) - 67 - “Understanding mobile Apps: Questions& Answers” available at https://www.onguardonline.gov/articles/pdf - 0004 - mobile - apps.pdf (accessed on 27/01/2016) "What are mobile device identifiers", https://www.aerserv.com/mobile - device - identifiers/ (accessed on 19/12/2015) http://www.alexa.com/topsites/ category/Computers/Internet/Searching/Search_Engi nes , (accessed on 26/12/2015). http://techscience.org/a/2015103001/ (accessed on 19/12/2015) See USA Privacy Act (1974), Open Democracy Act in South Africa (1996), Privacy Charter of Australia 1994
el
heal.recordProvider
School of Economics, Business Administration and Legal Studies, LLM in Transnational and European Commercial Law, Mediation, Arbitration and Energy Law
el
heal.publicationDate
2016-03-22
heal.abstract
This dissertation was written as part of the LLM in Transnational and European Commercial Law, Mediation, Arbitration and Energy Law at the International Hellenic University. Acknowledging the dangers for individuals’ privacy hidden in the widespread use of mobile applications, the dissertation studies the current practices of five of the top famous mobile applications; Facebook, Google Search, Google Maps, Foursquare and Whats App in Android and iOS are examined with regard to the installation procedure and the Privacy Policy documents provided to users. How applications access and process users’ information stored on the device? For what purposes? What information do they provide to them about this process? How and what are the users asked to agree to? From a legal point of view, do the Data Protection and ePrivacy Directives protect users in the European Union territory when the aforementioned applications process their persona l data? When yes, do the current practices regarding the installation procedure and Privacy Policy documents reconcile with the prerequisites of these Directives concerning the acquisition of valid consent for the processing of personal data? With particular focus on the examination of the consent related issues, the dissertation elaborates on all the above questions and attempts to provide responses
en
heal.tableOfContents
- vii - CONTENTS ABSTRACT ................................ ................................ ................................ ........................... III A CKNOWLEDGEMENTS ................................ ................................ ................................ .... IV CONTENTS ................................ ................................ ................................ ......................... VII CHAPTER 1 - INTRODUCTION ................................ ................................ .............................. 1 1.1 M OBILE APPLICATIONS P OSING A THREAT ON TH E PROTECTION OF USER S ’ PERSONAL INFORMATION ; DESCRIPTION AND SIGN IFICANCE OF THE PROB LEM . ................................ ...... 1 1.2 R ESEARCH QUESTION ................................ ................................ ................................ ... 5 1.3 M ETHODOLOGY AND STRUC TURE ................................ ................................ .................. 6 CHAPTER 2: ACTORS’ T ECHNOLOGIES AND FIND INGS ON CURRENT PRAC TICES 9 2.1 A CTORS AND THEIR TECH NOLOGIES ................................ ................................ .............. 9 2.1.1 The device and OS manufacturers ................................ ................................ 9 2.1.2 Application marketplaces ................................ ................................ ............. 10 2.1.3 Application developers/owners ................................ ................................ .... 11 2.1.4 Third parties ................................ ................................ ................................ . 11 2.2 M ETHOD OF APPROACH - RESEARCH STRATEGY ................................ ............................ 12 2.3 C URRENT P RACTICES ................................ ................................ ................................ . 14 2.3.1 Giving permissions ................................ ................................ ....................... 14 2.3.2 Privacy Policies and re lated documents ................................ ...................... 18 CHAPTER 3: THE EUROP EAN UNION’S LEGAL AR SENAL ................................ .......... 23 3.1. T HE RIGHT TO PRIVACY AND DATA PROTECTION ON MOBILE APPLICATIO NS TERRAIN ..... 23 3.2 T HE EU LEGAL FRAMEWORK ................................ ................................ ....................... 25 3. 3 E LABORATION ON THE LE GAL FRAMEWORK AND AS SESSMENT ................................ ...... 26 3.3.1. The concepts of “processing”,"personal data" and "data controller" .......... 26 3.3.2 Applicability of the Data Protection and ePrivacy Directives by the device and OS manufacturers and app developers ................................ ......................... 29 3.3.3 Legal ground for the processing of personal data - Consent ....................... 39 3.3.4 Layered information notices ................................ ................................ ......... 46 CHAPTER 4: PATHS TO COMPLIANCE ................................ ................................ ........... 52 4.1 C OMMON RESPONSIBILI TIES ................................ ................................ ........................ 52 4.2 L AYERED INFORMATION A ND CONSENT - GRANTING - MECHANISMS ................................ .. 53 4.3 T OOLS OF CONTROL ................................ ................................ ................................ ... 56 4.4 S TRUCTURE OF THE P OLICIES ................................ ................................ ..................... 57 - viii - CHAPTER 5: CONCLUSIO N ................................ ................................ ............................... 59 BIBLIOGRAPHY ................................ ................................ ................................ .................. 61 APPENDIX ................................ ................................ ................................ ............................. 1
en
heal.advisorName
Kosta, Eleni Prof.Dr.
en
heal.committeeMemberName
Alexandropoulou, Evgenia Prof.Dr.
en
heal.committeeMemberName
Komnios, Komninos Dr.
en
heal.academicPublisher
IHU
en
heal.academicPublisherID
ihu
el
heal.numberOfPages
88
el


This item appears in the following Collection(s)

Show simple item record

Related Items