{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T17:24:21Z","timestamp":1778520261696,"version":"3.51.4"},"reference-count":69,"publisher":"IEEE","license":[{"start":{"date-parts":[[2020,10,1]],"date-time":"2020-10-01T00:00:00Z","timestamp":1601510400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2020,10,1]],"date-time":"2020-10-01T00:00:00Z","timestamp":1601510400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2020,10,1]],"date-time":"2020-10-01T00:00:00Z","timestamp":1601510400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100010002","name":"Ministry of Education","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100010002","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020,10]]},"DOI":"10.1109\/issre5003.2020.00032","type":"proceedings-article","created":{"date-parts":[[2020,11,11]],"date-time":"2020-11-11T21:52:40Z","timestamp":1605131560000},"page":"253-264","source":"Crossref","is-referenced-by-count":64,"title":["An Empirical Evaluation of GDPR Compliance Violations in Android mHealth Apps"],"prefix":"10.1109","author":[{"given":"Ming","family":"Fan","sequence":"first","affiliation":[]},{"given":"Le","family":"Yu","sequence":"additional","affiliation":[]},{"given":"Sen","family":"Chen","sequence":"additional","affiliation":[]},{"given":"Hao","family":"Zhou","sequence":"additional","affiliation":[]},{"given":"Xiapu","family":"Luo","sequence":"additional","affiliation":[]},{"given":"Shuyue","family":"Li","sequence":"additional","affiliation":[]},{"given":"Yang","family":"Liu","sequence":"additional","affiliation":[]},{"given":"Jun","family":"Liu","sequence":"additional","affiliation":[]},{"given":"Ting","family":"Liu","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref39","year":"2019","journal-title":"ApkTool A tool for reverse engineering Android apk files"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/3098243.3098247"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1007\/s13042-010-0001-0"},{"key":"ref32","year":"2019","journal-title":"The Stanford Parser A Statistical Parser"},{"key":"ref31","year":"2019","journal-title":"Jsoup Java HTML Parser"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2010.5544302"},{"key":"ref37","first-page":"3111","article-title":"Distributed representations of words and phrases and their compositionality","author":"mikolov","year":"2013","journal-title":"Proc NIPS"},{"key":"ref36","year":"2019","journal-title":"National Health Data Dictionary"},{"key":"ref35","year":"2018","journal-title":"Recital 54 gdpr"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1023\/A:1010933404324"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.17"},{"key":"ref62","first-page":"993","article-title":"Uipicker: User-input privacy identification in mobile applications","author":"nan","year":"2015","journal-title":"Proc Security"},{"key":"ref61","first-page":"977","article-title":"Supor: Precise and scalable sensitive user input detection for android apps","author":"huang","year":"2015","journal-title":"Proc Security"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2015.76"},{"key":"ref28","year":"2019","journal-title":"Msc63-j ensure that securerandom is properly seeded"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1145\/2509136.2509549"},{"key":"ref27","year":"2019","journal-title":"Cwe-329 Not using a random iv with cbc mode"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/MODELS.2019.00-20"},{"key":"ref66","article-title":"An ai-assisted approach for checking the completeness of privacy policies against gdpr","author":"torre","year":"2020","journal-title":"Proc RE"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/1367497.1367569"},{"key":"ref67","first-page":"101","article-title":"Modelling legal knowledge for gdpr compliance checking","author":"palmirani","year":"2018","journal-title":"Proceedings of JURIX"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1109\/RE.2018.00023"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-99951-7_2"},{"key":"ref2","year":"2015","journal-title":"National health data dictionary version 16 2"},{"key":"ref1","year":"2019","journal-title":"Fines and penalties"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/2907942"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/RE.2016.20"},{"key":"ref21","year":"2019","journal-title":"Google Play"},{"key":"ref24","year":"2019","journal-title":"Cwe-311 Missing encryption of sensitive data"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/RE.2017.87"},{"key":"ref26","year":"2019","journal-title":"Cwe-916 Use of password hash with insufficient computational effort"},{"key":"ref25","year":"2002","journal-title":"Vulnerability details Cve-2002-1697"},{"key":"ref50","first-page":"338","article-title":"Estimating continuous distributions in bayesian classifiers","author":"john","year":"1995","journal-title":"Proc UAI"},{"key":"ref51","year":"2016","journal-title":"Android annotations"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1145\/2568225.2568301"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1145\/3180155.3180196"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2017.55"},{"key":"ref56","first-page":"585","article-title":"Policylint: investigating internal privacy policy contradictions on google play","author":"andow","year":"2019","journal-title":"Proc USENIX SEC"},{"key":"ref55","first-page":"531","article-title":"Polisis: Automated analysis and presentation of privacy policies using deep learning","author":"harkous","year":"2018","journal-title":"Proc USENIX SEC"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/3139937.3139939"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23145"},{"key":"ref52","first-page":"289","article-title":"Malton: Towards on-device non-invasive mobile malware analysis for art","author":"xue","year":"2017","journal-title":"Proc Security"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23034"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2017.2687880"},{"key":"ref40","year":"2019","journal-title":"UI automator"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2016.14"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2018.2806891"},{"key":"ref14","first-page":"771","article-title":"Graph embedding based familial analysis of android malware using unsupervised learning","author":"fan","year":"2016","journal-title":"Proc ICSE"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516693"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382205"},{"key":"ref17","first-page":"1065","article-title":"A stitch in time: Supporting android developers in writing secure code","author":"nguyen","year":"2017","journal-title":"Proc CCS"},{"key":"ref18","year":"2019","journal-title":"General Data Protection Regulation (GDPR)"},{"key":"ref19","year":"2019","journal-title":"We help with the legal requirements so you can focus on the business"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/2393596.2393608"},{"key":"ref3","year":"2017","journal-title":"Privacy policy guidance"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/1143120.1143123"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-35890-6_11"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2016.55"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2019.2926129"},{"key":"ref49","doi-asserted-by":"crossref","first-page":"235","DOI":"10.1023\/A:1022645310020","article-title":"C4.5: programs for machine learning","volume":"16","author":"quinlan","year":"1994","journal-title":"Machine Learning"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884855"},{"key":"ref46","article-title":"Cryptoguard: High precision detection of cryptographic vulnerabilities in massive-sized java projects","author":"rahaman","year":"2018","journal-title":"arXiv preprint arXiv 1806 06881"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23140"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23039"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1007\/BF00153759"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/MM.2015.25"},{"key":"ref41","first-page":"259","article-title":"Flowdroid: Precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for android apps","author":"arzt","year":"2014","journal-title":"Proc PLDI"},{"key":"ref44","first-page":"280","article-title":"IccTA: detecting inter-component privacy leaks in Android apps","author":"li","year":"2015","journal-title":"Proceedings of the International Conference on Software Engineering ICSE'94"},{"key":"ref43","first-page":"214","article-title":"Soot-a java bytecode optimization framework","author":"vall\u00e9e-rai","year":"1999","journal-title":"Proc CASCON"}],"event":{"name":"2020 IEEE 31st International Symposium on Software Reliability Engineering (ISSRE)","location":"Coimbra, Portugal","start":{"date-parts":[[2020,10,12]]},"end":{"date-parts":[[2020,10,15]]}},"container-title":["2020 IEEE 31st International Symposium on Software Reliability Engineering (ISSRE)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9250925\/9250926\/09251060.pdf?arnumber=9251060","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,28]],"date-time":"2022-06-28T21:56:29Z","timestamp":1656453389000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9251060\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,10]]},"references-count":69,"URL":"https:\/\/doi.org\/10.1109\/issre5003.2020.00032","relation":{},"subject":[],"published":{"date-parts":[[2020,10]]}}}