understanding-privacy-links

Expanded links in the Understanding Privacy book by Heather Burns, 2022, ISBN 978-3-945749-64-7

Why?

Heather's book is absolutely phenomenal and should be, deserves to be a foundational piece for everyone working in the software industry, whether as a software developer, project manager, whether their thing is on the web, used in cars.

That said I do not trust that Smashing Magazine's short links are going to be available for years to come, plus I do not actually know what metrics it collects about folks when someone visits a link before the redirect, so I went through the footnotes of the book and jotted down every short link and the respective target URLs.

Pages where I found the links are correct for the English (UK) print version of the book. I do not know how the kindle / other digital, or even later publication date books have these links.

How?

I read the book, then went through it again to collect the links, then opened each link one by one, and made the shortlinks into code snippets, and the resolved paths clickable.

I added the footnote numbers so I know it's complete and contiguous, and so do you: for example [10] is there as not a link to mean that I haven't skipped it / forgot about it and there's another link leading to someplace.

For the links that do not resolve to anywhere I've sent an errata email already to smashing magazine.

Hope you find this useful.

The links

Part One: Privacy and You

Page 29:

• [1] not a link

Page 31: They are all under footnote 2:

• [2] https://smashed.by/oecd -> https://www.oecd.org/digital/privacy/
• [2] https://smashed.by/coe -> https://www.coe.int/en/web/data-protection/convention108-and-protocol
• [2] https://smashed.by/isoprivacy -> https://www.iso.org/standard/45123.html
• [2] https://smashed.by/apec -> https://www.apec.org/publications/2005/12/apec-privacy-framework
• [2] https://smashed.by/ftcprinciples -> https://en.wikipedia.org/wiki/FTC_fair_information_practice

Page 44:

• [3] https://smashed.by/europeanparliament -> https://eur-lex.europa.eu/eli/reg/2016/679/oj

Page 47:

• [4] https://smashed.by/europeanparliament -> https://eur-lex.europa.eu/eli/reg/2016/679/oj

Page 59:

• [5] https://smashed.by/edpbmembers -> https://edpb.europa.eu/about-edpb/about-edpb/members_en

Page 65:

• [6] https://gdprhub.eu (not a smashed.by shortlink in the book)

Page 67:

• [7] https://smashed.by/cookies -> https://ico.org.uk/for-organisations/direct-marketing-and-privacy-and-electronic-communications/guide-to-pecr/cookies-and-similar-technologies/

Page 72: Link in the book is broken (404), the correct link should be https://smashed.by/privacyblueprint, without the s

• [8] https://smashed.by/privacysblueprint -> https://www.hup.harvard.edu/books/9780674976009

Page 76:

• https://smashed.by/legislationtracker (not a footnote) -> https://iapp.org/resources/article/us-state-privacy-legislation-tracker/

Page 78:

• [9] https://smashed.by/eucorona -> https://ec.europa.eu/commission/presscorner/detail/en/ip_20_626
• [10] not a link

Page 83:

• [11] https://smashed.by/eucompanies -> https://noyb.eu/en/next-steps-eu-companies-faqs
• [12] https://smashed.by/transatlanticflows -> https://www.politico.eu/article/eu-us-strike-preliminary-deal-to-unlock-transatlantic-data-flows/

Page 84:

• [13] https://smashed.by/zoom -> https://www.reuters.com/article/us-zoom-video-commn-privacy-lawsuit/zoom-sued-for-overstating-not-disclosing-privacy-security-flaws-idUSKBN21Q10V/

Page 89:

• [14] https://smashed.by/nist -> https://www.nist.gov/news-events/news/2020/01/nist-releases-version-10-privacy-framework

Page 90:

• [15] https://smashed.by/consumerprotection -> https://www.iso.org/committee/6935430.html

Part Two: Privacy and Your Work

Page 94:

• [1] https://smashed.by/privacybydesign -> https://www.smashingmagazine.com/2017/07/privacy-by-design-framework/

Page 95:

• [2] https://smashed.by/privacylabour -> https://w3ctag.github.io/privacy-principles/#privacy-labour

Page 96:

• [3] not a link

Page 98:

• [4] https://smashed.by/ico -> https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/accountability-and-governance/guide-to-accountability-and-governance/accountability-and-governance/data-protection-by-design-and-default/

Page 120:

• [5] not a link

Page 122:

• [6] https://smashed.by/eurlex -> https://eur-lex.europa.eu/eli/reg/2016/679/oj

Page 124:

• [7] https://smashed.by/dpcreport -> https://www.dataprotection.ie/en/news-media/press-releases/report-dpc-use-cookies-and-other-tracking-technologies

Page 138:

• [8] https://smashed.by/datatilsynet -> leads to a 404 page. This is the expanded link: https://www.datatilsynet.no/en/about-privacy/virksomhetenes-plikter/innebygd-personvern/data-protection-by-design-and-by-default/
• [9] https://smashed.by/cnil -> https://www.cnil.fr/en/cnil-publishes-gdpr-guide-developers
• [10] https://smashed.by/enisa -> https://www.enisa.europa.eu/publications/privacy-and-data-protection-by-design

Page 139:

• [11] https://smashed.by/privacyquestionnaire -> https://www.w3.org/TR/security-privacy-questionnaire/

Page 140:

• [12] not a link

Page 149:

• [13] not a link

Page 150:

• [14] https://observatory.mozilla.org (not a smashed by shortlink)

Page 151:

• [15] https://linddun.org (not a smashed by shortlink)

Page 153:

• https://smashed.by/threatcatalog (not a footnote) -> leads to a 404 page. This is the expanded link: https://linddun.org/linddun-threat-catalog

Page 154:

• [16] https://smashed.by/privacyispower -> https://www.carissaveliz.com/books

Page 164:

• [17] https://smashed.by/wpdisclaimers -> https://developer.wordpress.org/plugins/wordpress-org/compliance-disclaimers/

Page 165:

• [18] not a link

Page 166:

• [19] https://smashed.by/formsprivacy -> https://www.smashingmagazine.com/2019/04/privacy-concerns-ux-web-forms/
• [20] https://smashed.by/cookieconsent -> https://www.smashingmagazine.com/2019/04/privacy-ux-better-cookie-consent-experiences/
• [21] https://smashed.by/permissionrequests -> https://www.smashingmagazine.com/2019/04/privacy-better-notifications-ux-permission-requests/
• [22] https://smashed.by/privacyframework -> https://www.smashingmagazine.com/2019/04/privacy-ux-aware-design-framework/

Page 176:

• [23] https://smashed.by/smashingprivacy -> https://www.smashingmagazine.com/privacy-policy/

Page 177:

• [24] https://smashed.by/appleprivacy -> https://www.apple.com/uk/privacy/labels/ (I wonder if this depends on where you are, Apple might geolocate you)
• [25] https://smashed.by/atlanticprivacy -> https://www.theatlantic.com/privacy-policy/
• [26] https://smashed.by/policydisclosure -> https://www.smashingmagazine.com/2020/10/website-policy-disclosure-pages/

Page 180:

• [27] https://catalogue.projectsbyif.com (not a smashed by shortlink)

Page 182:

• [28] not a link

Page 183:

• [29] https://www.deceptive.design (not a smashed by shortlink)
• [30] https://dark.privacypatterns.eu (not a smashed by shortlink)
• [31] https://darkpatterns.uxp2.com (not a smashed by shortlink)
• [32] https://smashed.by/arenavintuit -> https://casetext.com/case/arena-v-intuit-inc

Page 185:

• [33] https://smashed.by/clickbook -> https://www.smashingmagazine.com/printed-books/click/

Page 186:

• [34] https://smashed.by/datasociety -> leads to a 404 page on medium. The expanded link is: https://points.datasociety.net/dark-patterns-and-design-policy-75d1a71fbda5
• [35] https://smashed.by/stiftungnv -> https://www.stiftung-nv.de/en/publication/dark-patterns-regulating-digital-design
• [36] https://smashed.by/californiaprivacy -> https://georgetownlawtechreview.org/regulating-privacy-dark-patterns-in-practice-drawing-inspiration-from-california-privacy-rights-act/GLTR-09-2021/
• [37] https://smashed.by/edpbguidelines -> https://edpb.europa.eu/system/files/2022-03/edpb_03-2022_guidelines_on_dark_patterns_in_social_media_platform_interfaces_en.pdf

Part Three: Privacy and Your Users

Page 191:

• [1] https://smashed.by/cookies -> https://ico.org.uk/for-organisations/direct-marketing-and-privacy-and-electronic-communications/guide-to-pecr/cookies-and-similar-technologies/

Page 192:

• [2] https://smashed.by/iabdecision -> https://www.theregister.com/2022/02/02/europe_iab_decision/
• [3] https://smashed.by/cookieconsent -> https://www.smashingmagazine.com/2019/04/privacy-ux-better-cookie-consent-experiences/

Page 193:

• [4] http://www.youronlinechoices.com (not a smashed by shortlink)

Page 196:

• [5] https://smashed.by/privacyshield -> https://www.wired.co.uk/article/google-analytics-europe-austria-privacy-shield
• [6] https://smashed.by/googleanalytics -> https://www.vischer.com/en/knowledge/blog/how-to-legally-use-google-analytics-in-europe-39512/

Page 201:

• [7] https://smashed.by/inspectionsoftware -> https://edps.europa.eu/edps-inspection-software_en
• [8] https://observatory.mozilla.org (not a smashed by shortlink)
• [9] https://smashed.by/snitch -> https://en-gb.wordpress.org/plugins/snitch/
• [10] https://exodus-privacy.eu.org (not a smashed by shortlink)

Page 204:

• [11] https://smashed.by/socialprivacy -> https://panzi.github.io/SocialSharePrivacy/

Page 205:

• https://smashed.by/spotifystalkers (not a footnote) -> https://www.forbes.com/sites/barrycollins/2021/06/03/spotify-accused-of-letting-stalkers-hound-their-victims/

Page 207:

• [12] https://smashed.by/databrokers -> https://www.wired.com/story/opinion-data-brokers-are-a-threat-to-democracy/

Page 211:

• [13] https://smashed.by/coppa -> https://www.ftc.gov/business-guidance/resources/complying-coppa-frequently-asked-questions
• [14] https://smashed.by/childrensdata -> https://www.unicef.org/globalinsight/reports/better-governance-childrens-data-manifesto

Page 214:

• [15] GDPR, Chapter II, Article 8 -> https://eur-lex.europa.eu/eli/reg/2016/679/oj#art_8

Page 216:

• [16] GDPR, Recital 65 -> https://gdpr-info.eu/recitals/no-65/

Page 217:

• [17] https://smashed.by/childrenprivacy -> https://en.wikipedia.org/wiki/Children%27s_Online_Privacy_Protection_Act
• [18] https://smashed.by/coppa -> https://www.ftc.gov/business-guidance/resources/complying-coppa-frequently-asked-questions

Page 220:

• [19] https://smashed.by/pesia -> https://www.virteuproject.eu/servicepackage/pesia/

Page 222:

• [20] https://smashed.by/dataethics -> https://dataethics.eu/wp-content/uploads/dataethics-impact-assessment-2021.pdf

Page 226:

• https://smashed.by/blechman (not a footnote) -> https://twitter.com/AlexBlechman/status/1457842724128833538

Part Four: Privacy and Your Future

Page 233:

• [1] https://smashed.by/tunesfromthebook -> https://open.spotify.com/playlist/3H784HNCvFKRM5N2Wzme2e?nd=1&dlsi=0f80a74137bb49ab

Page 234:

• [2] https://smashed.by/eff -> https://www.eff.org/deeplinks/2018/07/new-rules-protect-data-privacy-where-focus-what-avoid

Page 241:

• [3] https://smashed.by/androidprivacy -> https://developer.android.com/podcasts/apps-games-insights/embracing-innovation-by-building-privacy-friendly-apps

Page 246:

• [4] https://smashed.by/deletefacebook -> https://www.theguardian.com/media/2018/apr/04/missing-link-why-disabled-people-cant-afford-delete-facebook-social-media
• [5] https://smashed.by/unethicaltech -> https://accessibility.scot/accessible-unethical-technology/

Page 248:

• [6] https://smashed.by/swodinsky -> https://twitter.com/swodinsky/status/1208890740849426435

Postscript: Privacy and Health Data

Page 262:

• [1] https://smashed.by/zoomsecurity -> https://www.wsj.com/articles/zoom-ceo-i-really-messed-up-on-security-as-coronavirus-drove-video-tools-appeal-11586031129

Page 271:

• [2] https://smashed.by/coronabill -> https://osf.io/preprints/lawarxiv/yc6xu
• [3] https://smashed.by/covidtracing -> https://twitter.com/HumanRightsCtte/status/1267381160650383360