Welcome to our website

There are different ways to deal with the privacy issue. One way is to withdraw from this digital world by not using Google and canceling your Social Networks’ accounts. Another way is to heavily regulate the Internet by not allowing anything to be shared or to put strong penalties on the collection and use of data.

We believe in a third solution, namely to give the data back to their real owners, not in the form of an asset that they can sell individually but rather to let them be in control of how much they want to share, how, when and under which circumstances their data may be used, and for which specific purpose.

Privacy Policies in Social Networks

A Rich Extensible Privacy Policy Language

We add the temporal operators always and eventually indexed with timing intervals to the knowledge-based logic \(\mathcal{KBL_{SN}}\).

Enforcement of Privacy Policies

Besides using static verification techniques to prove that a social network is preserving-privacy we aim at providing mechanisms to monitor and enforce the policies.

Social Network Integration

We develop a theory of privacy policies to be able to determine (statically and at runtime) whether different privacy policies (from different social networks) are compatible or not.

Diaspora* Implementation

We extend Diaspora* with a privacy policy mechanism and enhance it with an enforcement mechanism. For the definition of the privacy policies we have an interface of our formal language.

Privacy in Other Domains

Web Security

Most browsers allow users to install small applications, generally developed by third parties, named browser extensions with full access to any (sensitive or not) content that the user is accessing.

Biometrics

Biometrics refers to the identification and authentication methods that, using biological signals (e.g., heart signal), can identify or validate the identity of a person.

Data Minimisation

Data minimisation is a privacy enhancing principle, stating that personal data collected should be no more than necessary for the specific purpose consented by the user.

Privacy by Design

Finding suitable ways to handle personal data in conformance with the law (e.g., GDPR) is challenging and one way is to take privacy into account since early stages of the software development life cycle.