π·
Camera Permission
Privacy
OS permission gating access to camera APIs.
app permissions
mobile permissions
biometric authentication
Glossary
Privacy terms glossary
Plain-language explanations for encryption, tracking, compliance, and security concepts.
41 terms
(page 1 of 2)
π€
CAPTCHA
Security
Bot mitigation challenge-response mechanism.
bot detection
rate limiting
brute force attack
πΊπΈ
CCPA
Privacy
California privacy statute defining consumer rights and business obligations.
opt out
data broker
privacy notice
ποΈ
Certificate Authority (CA)
Security
PKI entity that signs and validates X.509 certificates.
tls
https
certificate pinning
π
Certificate Lifecycle
Encryption
Management of certificate issuance, renewal, rotation, monitoring, and revocation to maintain secure trust.
pki
certificate authority
certificate revocation
π
Certificate Pinning
Security
Restricting TLS trust to specific keys/certificates.
certificate authority
tls
https
π§―
Certificate Revocation
Encryption
Mechanisms to invalidate certificates before expiry (CRLs/OCSP), with ecosystem reliability considerations.
pki
certificate authority
ocsp
π
Certificate Transparency (CT)
Encryption
Public append-only logs for TLS certificates enabling monitoring and detection of CA mis-issuance.
certificate authority
pki
tls
π±οΈ
Clickjacking
Web Security
UI redressing attacks using overlays/iframes.
xss
security headers
session hijacking
π±οΈ
Clickwrap
Consent
Contract formation mechanism requiring an affirmative click to accept terms.
consent
privacy notice
terms of service
π§°
ClientβSide Encryption
Encryption
Encryption performed at the endpoint under user control.
zero knowledge encryption
encryption key
cloud encryption
βοΈ
Cloud Encryption
Encryption
Encryption applied to cloud-stored data and services.
secure storage
client side encryption
zero knowledge encryption
βοΈ
Cloud Provider
Data Management
Third-party vendor providing compute/storage/networking services, often acting as a processor.
data residency
data processor
cloud encryption
βοΈ
Cloud Security
Security
Security controls for cloud environments: identity, network segmentation, encryption, monitoring, and governance.
cloud provider
cloud encryption
access control
ποΈ
Cloud Storage
Data Management
Remote object/file storage service with access control, durability, and often integrated sharing.
cloud provider
cloud encryption
data residency
β
Code Signing
Security
Use of digital signatures to authenticate software publishers and ensure integrity of executables and updates.
digital signature
supply chain attack
malware
β
Consent
Consent
A lawful basis where an individual freely gives informed, specific permission.
user consent
opt out
privacy notice
π΅βπ«
Consent Fatigue
Consent
Decision fatigue caused by repeated consent prompts and complex choices.
cookie banner
consent management platform
dark patterns
π§
Consent Management Platform (CMP)
Consent
Platform to collect, manage, and propagate consent signals across vendors and purposes.
cookie consent
privacy notice
user consent
β©οΈ
Consent Withdrawal
Consent
Mechanism allowing a user to revoke previously granted consent; should be as easy as giving consent.
consent
opt out
privacy settings
π¦
Containerization
Security
OS-level virtualization that packages apps and dependencies into isolated runtime units.
sandboxing
cloud security
patch
π§±
Content Security Policy (CSP)
Web Security
Security header restricting resource loading/execution to mitigate XSS and data exfiltration.
xss
mixed content
browser extension
π§
Contextual Integrity
Privacy
Privacy theory (Nissenbaum) focusing on appropriate information flows within social contexts and norms.
contextual privacy
data ethics
consent
π§©
Contextual Privacy
Privacy
Concept that privacy norms depend on context, roles, and appropriate information flow.
privacy settings
consent
data minimization