9 Hits in 7.0 sec

Do Cookie Banners Respect my Choice? Measuring Legal Compliance of Banners from IAB Europe's Transparency and Consent Framework [article]

Célestin Matte, Nataliia Bielova, Cristiana Santos
2020 arXiv   pre-print
Many of such banners are implemented by Consent Management Providers (CMPs), who respect the IAB Europe's Transparency and Consent Framework (TCF).  ...  In this work, we systematically study IAB Europe's TCF and analyze consent stored behind the user interface of TCF cookie banners.  ...  P159564-2661789/ DOS0060094 between Inria and Qwant, and by the Inria DATA4US Exploratory Action project.  ... 
arXiv:1911.09964v2 fatcat:lftia4of7ncpdlyrn4u27cvliy

Privacy Preference Signals: Past, Present and Future [article]

Maximilian Hils, Daniel W. Woods, Rainer Böhme
2021 arXiv   pre-print
In the wake of recent privacy laws, a coalition of AdTech firms published the Transparency and Consent Framework (TCF), which defines an opt-in consent signal.  ...  Both the number of third parties on a website and the presence of Google Ads are associated with higher adoption of TCF.  ...  The second author is funded by the European Commission's call H2020-MSCA-IF-2019 under grant number 894700.  ... 
arXiv:2106.02283v3 fatcat:gguolkklu5dinbzsprkr2gfxym

Are cookie banners indeed compliant with the law? Deciphering EU legal requirements on consent and technical means to verify compliance of cookie banners [article]

Cristiana Santos, Nataliia Bielova, Célestin Matte
2020 arXiv   pre-print
In this work, we analyze the legal requirements on how cookie banners are supposed to be implemented to be fully compliant with the e-Privacy Directive and the General Data Protection Regulation.  ...  we also show which requirements are impossible to verify with certainty in the current architecture of the Web.  ...  This work has been partially supported by the ANR JCJC project PrivaWeb (ANR-18-CE39-0008 and by the Inria DATA4US Exploratory Action program  ... 
arXiv:1912.07144v2 fatcat:4nkrmy3wrrbhpibatedfzixmee

Google as a de facto privacy regulator: Analyzing Chrome's removal of third-party cookies from an antitrust perspective

Damien Geradin, Dimitrios Katsifis, Theano Karanikioti
2020 Social Science Research Network  
Online advertising is what funds free online content.  ...  The second iteration of the TCF, TCF v2.0, which is supported by Google, solicits user agreement for ten distinct data processing purposes (instead of the five included in first iteration of the TCF) and  ...  legal basis for the collection and processing of personal data by themselves and their technology partners, as well as ensure compliance with the ePrivacy Directive, IAB Europe, in collaboration with  ... 
doi:10.2139/ssrn.3738107 fatcat:ljpftxnvkjbpbdbas4qn3byyfa

Impossible Asks: Can the Transparency and Consent Framework Ever Authorise Real-Time Bidding After the Belgian DPA Decision?

Michael Veale, Midas Nouwens, Cristiana Santos
On 2 February 2022, the Belgian Data Protection Authority handed down a decision concerning IAB Europe and its Transparency and Consent Framework (TCF), a system designed to facilitate compliance of real-time  ...  Furthermore, under the DPA's simple-looking remedial orders are deep technical and organisational tensions.  ...  Acknowledgements The first author was party to a complaint concerning RTB and IAB Europe filed in the United Kingdom in 2018; this complaint was not passed to the Belgian DPA and does not form part of  ... 
doi:10.26116/techreg.2022.002 fatcat:uqmyrny4rnas5on2c3zzog3wmm

In-Depth Technical and Legal Analysis of Tracking on Health Related Websites with ERNIE Extension

Vera Wesselkamp, Imane Fouad, Cristiana Santos, Yanis Boussad, Nataliia Bielova, Arnaud Legout
2021 Proceedings of the 20th Workshop on Workshop on Privacy in the Electronic Society  
The views, opinions and positions expressed in this article are those of the author and are not endorsed by its institution.  ...  The work has been carried out by Nataliia Bielova while she was at Inria until August 2021.  ...  P159564-2661789/ DOS0060094 between Inria and Qwant, and by the Inria DATA4US Exploratory Action project.  ... 
doi:10.1145/3463676.3485603 fatcat:kovm7rlxfvdwddsp3znxkigyj4

Dark Patterns and the Legal Requirements of Consent Banners: An Interaction Criticism Perspective [article]

Colin M. Gray, Cristiana Santos, Nataliia Bielova, Michael Toth, Damian Clifford
2020 arXiv   pre-print
In this paper, we draw together perspectives and commentary from HCI, design, privacy and data protection, and legal research communities, using the language and strategies of "dark patterns" to perform  ...  Our analysis builds upon designer, interface, user, and social context lenses to raise tensions and synergies that arise together in complex, contingent, and conflicting ways in the act of designing consent  ...  In their 2019 study, Matte et al. [69] focused on Consent Management Platforms (CMPs) implementing IAB Europe's Transparency and Consent Framework (TCF) framework.  ... 
arXiv:2009.10194v1 fatcat:zo4hmxvkezeldaxnfh4ucvyr7y

Are cookie banners indeed compliant with the law?

Cristiana Santos, Nataliia Bielova, Célestin Matte
While some are provided by legal sources, others result from the domain expertise of computer scientists.  ...  designed and implemented to be compliant with the ePrivacy Directive and the GDPR, defining 22 legal requirements.  ...  Acknowledgements We are grateful to Fabiano Dalpiaz who has given feedback on the section related to natural language processing (NLP), as well as to Frederik Borgesius and Gaëtan Goldberg who have validated  ... 
doi:10.26116/techreg.2020.009 fatcat:gavmqoegkneyhc4a73b73n3sry

The Law of Islamic Finance in the United Kingdom: Legal Pluralism and Financial Competition

Jonathan G Ercanbrack
Finally, Islamic financial contracts, which are often governed by English law, face challenges in English courts concerning parties' choice of  ...  The results are hybrid structures that conform to Islamic legal theory but which generate municipal legal challenges in practice, as well as sharia-compliance risks.  ...  They are mere pieces of paper devoid of all legal effect unless they were made by reference to some system of private law which defines the obligations assumed by the parties to the contract by their use  ... 
doi:10.25501/soas.00013598 fatcat:2pj3insawnafxplsf3s4fada4u