Skip to Content

Category Archives: Google

The missing clauses in Google’s “Customer Match”

Written on October 20, 2015 at 8:51 pm, by

In September Google announced “Customer Match”, a new tool for advertisers to target their existing customer using their email addresses. “Customer match” is almost like Facebook’s “Custom Audiences” but Google and Facebook seem engaged in “a privacy race to the bottom” and Google may have taken the lead. Targeting email addresses Advertisers aim at targeting […]

Impact of Google privacy policy on web tracking

Written on January 5, 2014 at 1:43 pm, by

Google most important privacy policy changes happen almost two years ago. The change was announced as a clarification of the policies which will mainly be used to simplify and improve services. Now that the changes are effective, it is interesting to observe what the consequences of the new policy are and what has changed. In […]

Google’s Ad Targeting under the new Privacy Policy

Written on February 24, 2012 at 10:12 am, by

Google new privacy policy will be effective starting March the 1st. The Electronic Frontier Foundation (EFF) suggests to delete your Web Search History, and I strongly recommend to follow this advice because: 1)      The searches that have been recorded in your Web Search History before March the 1st will be subject to this policy [1]. […]

Searching session cookies and click-streams

Written on July 31, 2011 at 1:06 pm, by

In our paper on Google’s session cookie information leakage, Vincent Verdot and I described how to captures SID cookies on a shared network and run the attack with Firesheep (see the previous post). Nevertheless, there are other ways to capture such cookies. For instance one could use malware to capture search traffic, but the simplest […]

Show me your Cookie and I’ll tell you what you visited

Written on July 19, 2011 at 9:34 pm, by

Web Search History Information Leakage Back in February, I re-discovered a small flaw in Google Search: result personalization leaks the list of results you clicked on. This leak was already known and mentioned in a paper by Castelluccia et al., but several features added by Google made it critical. First there is the possibility (for […]

A follow up on Google Policies

Written on June 15, 2011 at 1:12 am, by

Last year, I started to analyze Google Search and Google Suggest logs retention policies for the NYU Privacy Research Group meetings. To complete this analysis, I’m trying to review policies of other Google services. ‘Personal Information’ vs ‘Information we collect’ While I just started this review, I noticed that Google seems to change the name […]

Introducing Unsearch

Written on February 26, 2011 at 7:06 pm, by

My first post introduces ‘Unsearch’, the extension that gave its name to this blog. Unsearch is an extension for the Google Chrome browser that allows to search on Google without leaving traces on Google Search logs or on Google Web Search History. Normally, your searches on Google are recorded and logged with your IP address […]