Web Application Privacy

Question 1

Failing to suitable design and implement an application, detect a problem, or promptly apply a fix, which is likely to result in a privacy breah. Vulnerability is a key problem in any system that guards or operates on sensitive data.

Answer 1

Wep application vulnerabilities

Question 2

Failing to prevent the leakage or any information containing or related to user data, or the data itself, to any unauthorized party resulting in loss of data confidentiality.

Answer 2

User-side data leakage

Question 3

Not informing the affected persons about a possible breach or data leak, resulting in either from intentional or unintentional events; failure to remedy the situation by fixing the cause; not attempting to limit the leaks

Answer 3

Insufficient data breach response

Question 4

Not providing sufficient information describing how data are processed, such as their collection, storage, and processing. Failure to make this information easily accessble and understandable for non-lawyers

Answer 4

Non-transparent policies, terms, and conditions

Question 5

Collecting descriptive, demographic, or any other user-related data that are not needed for the system. Applies also to data for which the user did not provide consent.

Answer 5

Collection of data not required for the primary purpose

Question 6

Providing user data to a third party without obtaining the user’s consent.

Answer 6

Sharing of data with a third party

Question 7

Using outdated, incorrect, or bogus user data and failing to update or correct data

Answer 7

Outdated personal data

Question 8

Failing to effectively enforce session termination. May result in the collection of additional user data without the user’s consent or awareness

Answer 8

Missing or insufficient session expiration

Question 9

Failing to provide data transfers over encrypted and secured channels, excluding the possibility of data leakage.

Answer 9

Insecure data transfer