9. Design a positive opt-in opt-in (no pre-checked boxes!)
Your strongest position is to get explicit, willful permission to collect user's
data. And think about micro-consent.
Screen Accept rate Churn Rate
With checkboxes 97,14% 2.86%
Without checkboxes 98,67 1.33%
10. Respect Data Subject Rights
User must be able to modify, correct, erase, and update Personal Data
11. Privacy by Design
Be proactive not Reactive; Preventative not Remedial
* https://www.digitemis.com/
If I pull data from an API, do I really
need all the fields of data that I could
get, or do I narrow it for the specific
purpose of this product?
When thinking about geolocation data–
do I really need it? And if I do capture
geolocation data, what are the risks
associated with that?
13. Reduce sensitivity of data
Aggregate and statistically anonymise data or extract the features of
interest before sharing
e.g. use age group instead of age