Attend Cybersecurity and Trusted Foundations seminar, July 28
The Center for Cybersecurity and Trusted Foundations invites you to an upcoming seminar on the General Data Protection Regulation.
The General Data Protection Regulation came into effect in 2018 and represents a major step in improving the digital rights of users located in the European Economic Area, or EEA. In its core, the GDPR is supposed to provide any user in the EEA with a right to their personal data including the rights to decide who has access and how the data is processed. The business world was wholly unprepared for this legislature and the transition and acceptance is limited with businesses frequently challenging, ignoring or circumventing requirements stated by the GDPR. However, positive changes have occurred since the introduction that can be linked to the heightened awareness of users concerning their personal data, such as the introduction of Privacy Labels in the App Stores of both Apple (2020) and Google (2022). In his talk Simon will present his work in the area mobile privacy including a sneak preview for his newest work on consent dialogs included in the proceedings of the upcoming USENIX Security Symposium. The talk will include a brief introduction to the GDPR and its implications concerning the rights and obligations of both users and data collectors as well as the challenges of actually enforcing the GDPR. This will be followed by a dive into the privacy labels of iOS applications and their reliability as well as an analysis of how mobile applications try to trick users into giving their consent to extensive data collection practices.