Abstract
In this paper we present research results from the multi-disciplinary EU research project USEMP (USEMP is a project funded from EU research framework, additional information about project scope and deliverables are available at project’s public website at: http://www.usemp-project.eu/). In particular, we look at the legal aspects of personal data licensing and profile transparency, the development of a personal data value model in Online Social Networks (OSNs) and the development of disclosure scoring and personal data value frameworks. In the first part of the paper we show how personal data usage licensing and profile transparency for OSN activities provides for Data Protection by Design (DPbD). We also present an overview of the existing personal data monetization ecosystem in OSNs and its possible evolutions for increasing privacy and transparency for consumers about their OSN presence. In the last part of the paper, we describe the USEMP scoring framework for personal information disclosure and data value that can assist users to better perceive how their privacy is affected by their OSN presence and what the value of their OSN activities is.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Notes
- 1.
On the legal effect of pseudo-anonymization see: Art. 29 WP Opinion 05/2014 on Anonymisation Techniques, and the upcoming General Data Protection Regulation (GDPR) that mitigates some of the obligations of data controllers if they process personal data that have been pseudo-anonymized. The legal definition of pseudo-anonymization (art. 4. 2(a) of the upcoming GDPR reads: 'pseudonjymous data' means personal data that cannot be attributed to a specific data subject without the use of additional information, as long as such additional information is kept separately and subject to technical and organizational measures to ensure non-attribution. A data controller is whoever determines the purpose of processing, i.e. the business model. The liability for compliance with EU Data Protection law rests solely with the data controller.
- 2.
Cf. expert interviews reported in [4] indicate a strong need on the side of the industry for a level playing field that will enable enterprises to act ethically sound, once they are sure that their competitors are forced to abide by the same rules.
- 3.
Once the legal ground or the purpose for processing has been exhausted personal data should be erased or anonymized, cf. art. 12 and 14 of the current Data Protection Directive D/95/46/EC (DPD).
- 4.
Note that art. 7.4 of the upcoming GDPR may prohibit this: ‘the execution of a contract or the provision of a service shall not be made conditional on the consent to the processing of data that is not necessary for the execution of the contract or the provision of the service pursuant to Article 6(1), point (b)’.
- 5.
We recognized that we need to qualify this as ‘perceived’ sensitivity, since when the law qualifies certain data as sensitive, based on art. 8 Data Protection Directive (DPD), this has major legal effect, which, however, does not depend on how a user ‘feels’ about the data.
- 6.
Clearly, these dimensions are not exhaustive and they do not necessarily match with the legal right to privacy as stipulated in art. 8 of the European Convention of Human Rights, or with the fundamental rights to privacy and data protection of the Charter of Fundamental Rights of the European Union. It is pivotal that perceived privacy and the right to privacy are understood on their own merits, taking note that the latter aims to provide the level playing field for users to develop their own privacy preferences.
- 7.
Botnia Living Lab is an environment in Sweden for human-centric research and the development and innovation of new ICT based solutions.
References
Popescu, A., Hildebrandt, M., Papadopoulos, S., Claeys, L., Lund, D., Michalareas, T., Kastrinogiannis, T., Pierson, J., Padyab, A.M.: User Empowerment for Enhanced Online Presence Management– Use Cases and Tools, APC15, 2015 (forthcoming)
van der Graaf, S., Vanobberghen, W., Kanakakis, M., Kalogiros, C.: Usable trust: Grasping trust dynamics for online security as a service. In: Tryfonas, T., Askoxylakis, I. (eds.) HAS 2015. LNCS, vol. 9190, pp. 271–283. Springer, Heidelberg (2015). The valorization of surveillance: Towards a political economy of Facebook. Democratic Communiqué, 22(1), 5–22
Searls, D.: The Intention Economy (book) 2012
London Economics, Study on the economic benefits of privacy-enhancing technologies (2010). http://londoneconomics.co.uk/blog/publication/study-on-the-economic-benefits-of-privacy-enhancing-technologies-pets/
Hildebrandt, M., Tielemans, L.: Data protection by design and technology neutral law. Comput. Law Secur. Rev. 29(5), 509–521 (2013)
USEMP Deliverable D3.5, Socio-economic value of personal information, 2015-04-01, this report presents a socio-economic perspective on the tool for user-centred personal data, management as envisioned by the USEMP project. http://www.usemp-project.eu/documents/deliverables
USEMP Deliverable D6.1 (under review), USEMP privacy scoring framework, 2015-0-15, the current deliverable is a technical report accompanying the first version of the USEMP privacy scoring framework, a tool that aims at raising the awareness of users about the disclosure and value of their personal information. http://www.usemp-project.eu/documents/deliverables/
Constine, J.: Facebook, Google, and Twitter’s war for app install ads (2014, November 30). Retrieved January 27, 2015. http://techcrunch.com/2014/11/30/like-advertising-a-needle-in-a-haystack/
Young, A.L., Quan-Haase, A.: Privacy protection strategies on Facebook: The Internet privacy paradox revisited. Inf. Commun. Soc. 16(4), 479–500 (2013)
Van Dijck, J.: The culture of connectivity: a critical history of social media. Oxford University Press, Oxford; New York (2013)
Hildebrandt, M., O’Hara, K., Waidner, M. (eds.): The Value of Personal Data. Digital Enlightenment Yearbook 2013. IOS Press, Amsterdam (2013)
Hildebrandt, M.: “The Dawn of a Critical Transparency Right for the Profiling Era”, in Digital Enlightenment Yearbook 2012, pp. 41–56. IOS Press, Amsterdam (2012)
Liu, K., Terzi, E.: A framework for computing the privacy scores of users in online social networks. ACM Trans. Knowl. Discov. Data, 5(1), Article 6 (2010)
Moody, D.L., Walsh, P.A.: Measuring the value of information: An asset valuation approach. In: Morgan, B., Nolan, C. (eds.) Guidelines for Implementing Data Resource Management (4th Edition). DAMA International Press, Seattle, USA (2002)
Pagefair 2015 ad-block Report. http://blog.pagefair.com/2015/ad-blocking-report/
USEMP Deliverable D4.1, Social Requirement Analysis, 2014-08-18, this document presents the methodology used and the results of the first user research including focus groups that highlight the requirements for a privacy enhancing tool. http://www.usemp-project.eu/documents/deliverables/
NAA ad-choices initiative for consumers opt-out for behavioural targeting. http://www.networkadvertising.org/choices/
Theodoridis, T., Papadopoulos, S., Kompatsiaris, Y.: Assessing the reliability of facebook user profiling. WWW (Companion Volume) 2015, 129–130 (2015)
Petkos, G., Papadopoulos, S., Kompatsiaris, Y.: PScore: Enhancing privacy awareness in online social networks. In: International Workshop on Multimedia Forensics and Security (MFSec) (2015)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this paper
Cite this paper
Popescu, A. et al. (2016). Increasing Transparency and Privacy for Online Social Network Users – USEMP Value Model, Scoring Framework and Legal. In: Berendt, B., Engel, T., Ikonomou, D., Le Métayer, D., Schiffner, S. (eds) Privacy Technologies and Policy. APF 2015. Lecture Notes in Computer Science(), vol 9484. Springer, Cham. https://doi.org/10.1007/978-3-319-31456-3_3
Download citation
DOI: https://doi.org/10.1007/978-3-319-31456-3_3
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-31455-6
Online ISBN: 978-3-319-31456-3
eBook Packages: Computer ScienceComputer Science (R0)