Last year I was a member of an ENISA (the European Network and Information Security Agency) expert group. We studied the issue of how to address and support privacy and data protection in mobile application development. A few days ago (on data protection day) ENISA published the final report. It was a real pleasure to work on this project, both with the academics involved, as well as the ENISA staff supporting us. Unfortunately, ENISA has adopted a new policy whereby it no longer acknowledges the contribution of the researchers that actually wrote the report: our names are not listed as authors. Sadly this means that for academics like myself participation in ENISA research projects and contribution to ENISA reports is no longer useful or even possible.

Read the rest of this entry »