Consent for targeted advertising: the case of Facebook

被引:0
作者
Sourya Joyee De
Abdessamad Imine
机构
[1] Indian Institute of Management Raipur,
[2] Lorraine University,undefined
[3] Cnrs,undefined
[4] Inria,undefined
来源
AI & SOCIETY | 2020年 / 35卷
关键词
Targeted advertising; Social media; Consent mechanisms; Privacy; GDPR; Privacy harms;
D O I
暂无
中图分类号
学科分类号
摘要
The EU General Data Protection Regulation (GDPR) recognizes the data subject’s consent as one of the legal grounds for data processing. Targeted advertising, based on personal data processing, is a central source of revenue for data controllers such as Google and Facebook. At present, the implementation of consent mechanisms for such advertisements are often not well developed in practice and their compliance with the GDPR requirements can be questioned. The absence of consent may mean an unlawful data processing and a lack of control of the user (data subject) on his personal data. However, consent mechanisms that do not fully satisfy GDPR requirements can give users a false sense of control, encouraging them to allow the processing of more personal data than they would have otherwise. In this paper, we identify the features, originating from GDPR requirements, of consent mechanisms. For example, the GDPR specifies that a consent must be informed and freely given, among other requirements. We then examine the Ad Consent Mechanism of Facebook that is based on processing of user activity data off Facebook Company Products provided by third parties with respect to these features. We discuss to what extent this consent mechanism respects these features. To the best of our knowledge, our evaluation of Facebook’s Ad Consent Mechanism is the first of its kind.
引用
收藏
页码:1055 / 1064
页数:9
相关论文
共 31 条
[1]  
Beckett P(2017)Gdpr compliance: your tech department’s next big opportunity Comput Fraud Secur 2017 9-13
[2]  
Cranor LF(2012)Necessary but not sufficient: standardized mechanisms for privacy notice and choice J Telecommun High Tech L 10 273-112
[3]  
Datta A(2015)Automated experiments on Ad privacy settings Proc Priv Enhanc Technol 1 92-15
[4]  
Tschantz MC(2017)Navigating the Atlantic: understanding EU data privacy compliance amidst a sea of uncertainty S Cal L Rev 91 163-197
[5]  
Datta A(2018)GDPR compliance in SMEs: there is much to be done J Inf Syst Eng Manag 3 30-undefined
[6]  
Drake G(2018)Gdpr-compliance nightmare or business opportunity? Comput Fraud Secur 2018 14-undefined
[7]  
Freitas M(2017)Consent for processing children’s personal data in the eu: following in us footsteps? Inf Commun Technol Law 26 146-undefined
[8]  
Mira da Silva M(2008)The cost of reading privacy policies ISJLP 4 543-undefined
[9]  
Garber J(2017)MyAdChoices: bringing transparency and control to online advertising ACM Trans Web (TWEB) 11 7-undefined
[10]  
Macenaite M(2018)Forgetting personal data and revoking consent under the GDPR: challenges and proposed solutions J Cybersecur 4 tyy001-undefined