Where does your data go? Comparing network traffic and privacy policies of public sector mobile applications
| dc.contributor.author | Carlsson Robin | |
| dc.contributor.author | Heino Timi | |
| dc.contributor.author | Koivunen Lauri | |
| dc.contributor.author | Rauti Sampsa | |
| dc.contributor.author | Leppänen Ville | |
| dc.contributor.organization | fi=ohjelmistotekniikka|en=Software Engineering| | |
| dc.contributor.organization-code | 1.2.246.10.2458963.20.71310837563 | |
| dc.contributor.organization-code | 2610302 | |
| dc.converis.publication-id | 68670874 | |
| dc.converis.url | https://research.utu.fi/converis/portal/Publication/68670874 | |
| dc.date.accessioned | 2025-08-28T02:20:38Z | |
| dc.date.available | 2025-08-28T02:20:38Z | |
| dc.description.abstract | <p>As services increasingly move online and mobile devices become ubiquitous, mobile applications are widely used by ordinary people with little technical knowledge. Consequently, user privacy has become an essential matter to consider when developing mobile applications. In this paper, we study the privacy of 32 mobile applications provided by Finnish public sector bodies. First, we investigate with network traffic analysis what kind of personal data these application send out to third party analytics services. We then analyze the privacy policy documents of these applications and assess their clarity and transparency. Our findings show that there are several inconsistencies between the actual traffic of the studied applications and what is said about processing personal data in privacy policies. This underlines the need for software developers and organizations to be better aware of privacy regulations and data their applications send out. There is also lots of work to be done in making the privacy policies less vague and more informative, for example when it comes to explaining what technical data items are sent to third parties and how this can potentially affect the user privacy.<br></p> | |
| dc.format.pagerange | 214 | |
| dc.format.pagerange | 225 | |
| dc.identifier.eisbn | 978-3-031-04826-5 | |
| dc.identifier.isbn | 978-3-031-04825-8 | |
| dc.identifier.issn | 2367-3370 | |
| dc.identifier.jour-issn | 2367-3370 | |
| dc.identifier.olddbid | 208954 | |
| dc.identifier.oldhandle | 10024/191981 | |
| dc.identifier.uri | https://www.utupub.fi/handle/11111/36434 | |
| dc.identifier.url | https://link.springer.com/chapter/10.1007/978-3-031-04826-5_21 | |
| dc.identifier.urn | URN:NBN:fi-fe2022021619507 | |
| dc.language.iso | en | |
| dc.okm.affiliatedauthor | Carlsson, Robin | |
| dc.okm.affiliatedauthor | Heino, Timi | |
| dc.okm.affiliatedauthor | Koivunen, Lauri | |
| dc.okm.affiliatedauthor | Rauti, Sampsa | |
| dc.okm.affiliatedauthor | Leppänen, Ville | |
| dc.okm.discipline | 113 Computer and information sciences | en_GB |
| dc.okm.discipline | 113 Tietojenkäsittely ja informaatiotieteet | fi_FI |
| dc.okm.internationalcopublication | not an international co-publication | |
| dc.okm.internationality | International publication | |
| dc.okm.type | A4 Conference Article | |
| dc.publisher.country | Switzerland | en_GB |
| dc.publisher.country | Sveitsi | fi_FI |
| dc.publisher.country-code | CH | |
| dc.publisher.place | Cham | |
| dc.relation.conference | World Conference on Information Systems and Technologies | |
| dc.relation.doi | 10.1007/978-3-031-04826-5_21 | |
| dc.relation.ispartofjournal | Lecture Notes in Networks and Systems | |
| dc.relation.ispartofseries | Lecture Notes in Networks and Systems | |
| dc.relation.volume | 468 | |
| dc.source.identifier | https://www.utupub.fi/handle/10024/191981 | |
| dc.title | Where does your data go? Comparing network traffic and privacy policies of public sector mobile applications | |
| dc.title.book | Information Systems and Technologies: WorldCIST 2022, Volume 1 | |
| dc.year.issued | 2022 |
Tiedostot
1 - 1 / 1
Ladataan...
- Name:
- CarlssonR_etal_2022_LNNS_Where_does_your.pdf
- Size:
- 425.89 KB
- Format:
- Adobe Portable Document Format