Topic: NT Analyzer Blog Series

Subscribe to NT Analyzer Blog Series RSS feed

Global Privacy Control Opt-Out of “Sale” – A Technical and Legal Viewpoint

By Daniel Rosenzweig (US), Steve Roosa (US) and Wenda Tang (US) on July 21, 2021 Posted in NT Analyzer Blog Series

Global Privacy Control Opt-Out of “Sale” – A Technical and Legal Viewpoint

According to the California Attorney General, consumers may now utilize a new technology called the Global Privacy Control (“GPC”) in order to opt out of a “sale” of personal information under the California Consumer Privacy Act (“CCPA”).

The GPC, according to its website, was developed by “various stakeholders including technologists, web publishers, technology companies, browser vendors, extension developers, academics, and civil rights organizations.”

Unlike the IAB Tech Lab U.S. Privacy String, which is controlled and operated by the adopting Business via JavaScript, the GPC is controlled by the browser software either natively (as in the case of Firefox) … Continue Reading

Google to nix “GAID” for opted-out users on Android

By NRF Digital Team, Steve Roosa (US) and Daniel Rosenzweig (US) on June 8, 2021 Posted in NT Analyzer Blog Series

Google to nix “GAID” for opted-out users on Android

Steve Roosa and Daniel Rosenzweig report on Google’s recent announcement regarding Android GAID settings.

Beginning later in 2021, for Android 12, Android devices will “zero-out” the Google Advertising ID (“GAID”) for users who have opted out of tracking and personalized advertising. (In other words, using the “Opt out of Ads Personalization” settings).

Read the full post on the NT Analyzer blog.… Continue Reading

How data privacy can affect consumer goods

By Steve Roosa (US) and Daniel Rosenzweig (US) on June 2, 2021 Posted in NT Analyzer Blog Series

Almost every website, mobile app, and IoT rely on third party code. But more often than not, this necessary reliance results in undetected data leakage, which can result in regulatory action, litigation, and/or bad PR.

Learn more on our NT Analyzer site.… Continue Reading

Google/Android announces privacy requirements

By Daniel Rosenzweig (US) and Wenda Tang (US) on May 12, 2021 Posted in NT Analyzer Blog Series

NT Analyzer | Google Announces App Privacy Requirements

Google announced that it will follow industry standards with respect to privacy obligations. All developers with apps on Google Play will be required to disclose the type of data collected and stored and how such data is used by Q2 of 2022. These are in addition to other elements, such as security practices, data deletion upon uninstallation of app, etc.

Violators, according to Google, will be required to fix identified violations; failure to do so could result in policy enforcement.

NT Analyzer is equipped to provide organizations with a solution to meet this requirement. Read more about these requirements and … Continue Reading

iOS 14.5 and ATT Framework is coming

By Steve Roosa (US) and Daniel Rosenzweig (US) on April 22, 2021 Posted in NT Analyzer Blog Series

ATT Framework is coming. Read more on NT Analyzer

On April 26, 2020, iOS/iPadOS/tvOS 14.5 and the enforcement of the AppTrackingTransparency (‘ATT’) go into effect.

Read more about this on Steve Roosa and Daniel Rosenzweig’s blog post on NT Analyzer.… Continue Reading

Don’t let Apple determine your app’s fate

By Steve Roosa (US) and Daniel Rosenzweig (US) on April 13, 2021 Posted in NT Analyzer Blog Series

Apple, in centralizing control over data collected on iOS, is rejecting apps from the App Store, essentially 50,000 apps at a time.

For example, the App Store recently rejected updates to an app that used a third party software development kit (“SDK”) from Adjust. As a result of the SDK and according to Apple (as reported by Forbes):

“[Your app]…collects user and device information to create a unique identifier for the user’s device [via fingerprinting] … Per section 3.3.9 of the Apple Developer Program License Agreement, neither you nor your app can use any permanent, device-based identifier … for … Continue Reading

Navigating Virginia’s new privacy law

By Steve Roosa (US) and Daniel Rosenzweig (US) on April 8, 2021 Posted in NT Analyzer Blog Series

Virginia recently enacted its own data protection/privacy law and like its European and Californian predecessors, the technical piece is key.

Like the GDPR and CCPA, the Consumer Data Protection Act (“CDPA”), which goes into effect on January 1, 2023, broadly defines “personal data” as “any information that is linked or reasonably linkable to an identified or identifiable natural person.” The law also requires controllers to conduct a data protection assessment and implement technical data security practices.

NT Analyzer is equipped to provide organizations with a solution to meet this requirement. Read more about this new law and our solution on … Continue Reading

NT Analyzer Webinar: Solving Apple’s new app privacy requirement

By NRF Digital Team on November 13, 2020 Posted in Cybersecurity, NT Analyzer Blog Series, Vendor management and transactions

Please join us for an NT Analyzer Webinar, Solving Apple’s new app privacy requirement. Head of NRF Digital Analytics and Technology Assessment Platform for the US Steven Roosa and Associate Dan Rosenzweig as they walk through the upcoming Apple requirements, and showcase the NT Analyzer Apple dashboard solution.… Continue Reading

Apple’s New Privacy Requirement: The Impact and the Solution

By Steve Roosa (US) and Daniel Rosenzweig (US) on October 16, 2020 Posted in NT Analyzer Blog Series

Apple recently announced that it will require app developers to provide extensive, granular information about their app’s privacy practices on App Store Connect, such as the type of data collected from users as well as the identity of third parties and the specific purpose of the collection. (See https://developer.apple.com/support/app-privacy-on-the-app-store/.)

NT Analyzer is equipped to provide organizations with a digestible and readily available report to meet this requirement. Read more about the requirements and our solution on our NT Analyzer website.… Continue Reading

NT Analyzer Blog Series: Why So Many Cookie Policies Are Broken, Part I – HTML5 LocalStorage

By Steve Roosa (US) on June 25, 2019 Posted in Compliance and risk management, Data breach, NT Analyzer Blog Series

Cookies Are One Piece of a Larger Puzzle

There has been an odd preoccupation with cookies for some time now—to the exclusion of other forms of browser tracking, some of which are much more flexible and more robust in their data collection capabilities than cookies. Despite this fact, these other, non-cookie tracking technologies are often not referenced in privacy policies and cookie policies, even though they are used to “store information” and / or “gain access to information stored in the terminal equipment” for purposes of the ePrivacy Directive and will presumably qualify as personal information under the CCPA as … Continue Reading