Texto completo
![[thumbnail of 78585.pdf]](https://oa.upm.es/style/images/fileicons/application_pdf.png) |
PDF (Portable Document Format)
- Se necesita un visor de ficheros PDF, como GSview, Xpdf o Adobe Acrobat Reader
Descargar (3MB) |
Automated GDPR compliance assessment for cross-border personal data transfers in android applications
Cita
Guamán Loachamín, Danny Santiago 
ORCID: https://orcid.org/0000-0003-2794-3079, Rodriguez Torrado, David ORCID: https://orcid.org/0000-0002-0911-4608, Álamo Ramiro, José María del ORCID: https://orcid.org/0000-0002-6513-0303 and Such, Jose
(2023).
Automated GDPR compliance assessment for cross-border personal data transfers in android applications.
"Computers & Security", v. 130
;
p. 103262.
ISSN 0167-4048.
https://doi.org/10.1016/j.cose.2023.103262.
ORCID: https://orcid.org/0000-0003-2794-3079, Rodriguez Torrado, David ORCID: https://orcid.org/0000-0002-0911-4608, Álamo Ramiro, José María del ORCID: https://orcid.org/0000-0002-6513-0303 and Such, Jose
(2023).
Automated GDPR compliance assessment for cross-border personal data transfers in android applications.
"Computers & Security", v. 130
;
p. 103262.
ISSN 0167-4048.
https://doi.org/10.1016/j.cose.2023.103262.
Descripción
| Título: | Automated GDPR compliance assessment for cross-border personal data transfers in android applications |
|---|---|
| Autor/es: |
|
| Tipo de Documento: | Artículo |
| Título de Revista/Publicación: | Computers & Security |
| Fecha: | 2023 |
| ISSN: | 0167-4048 |
| Volumen: | 130 |
| Materias: | |
| ODS: | |
| Palabras Clave Informales: | D.4.6 security and privacy protection, J.9 mobile applications, K.4.1.f privacy, K.4.1.g regulation, k.4.1.h transborder data flow |
| Escuela: | E.T.S.I. Telecomunicación (UPM) |
| Departamento: | Ingeniería de Sistemas Telemáticos |
| Licencias Creative Commons: | Reconocimiento - Sin obra derivada - No comercial |
Resumen
The General Data Protection Regulation (GDPR) aims to ensure that all personal data processing activities are fair and transparent for the European Union (EU) citizens, regardless of whether these are carried out within the EU or anywhere else. To this end, it sets strict requirements to transfer personal data outside the EU. However, checking these requirements is a daunting task for supervisory authorities, particularly in the mobile app domain due to the huge number of apps available and their dynamic nature. In this paper, we propose a fully automated method for assessing the compliance of Android apps with the GDPR requirements for cross-border personal data transfers. We have applied the method to 4593 apps from the Google Play Store discovering that nearly half of the ones sending personal data are potentially non-compliant with GDPR requirements. These results reveal that there is still a very significant gap between what app providers do in practice and what is intended by the GDPR.
Proyectos asociados
Tipo
Código
Acrónimo
Responsable
Título
Gobierno de España
TED2021-130455A-I00
AutoGDPR
Jose M. Del Alamo
Evaluación automática del Reglamento General de Protección de Datos
Más información
| ID de Registro: | 78585 |
|---|---|
| Identificador DC: | https://oa.upm.es/78585/ |
| Identificador OAI: | oai:oa.upm.es:78585 |
| URL Portal Científico: | https://portalcientifico.upm.es/es/ipublic/item/10041169 |
| Identificador DOI: | 10.1016/j.cose.2023.103262 |
| URL Oficial: | https://www.sciencedirect.com/science/article/pii/... |
| Depositado por: | Jose Maria Del Alamo Ramiro |
| Depositado el: | 01 Feb 2024 18:27 |
| Ultima Modificación: | 12 Nov 2025 00:00 |
Acciones
- Estadísticas
- Exportar cita
- Editar (sólo personal del Archivo)
