1. Don’t Accept Candy From Strangers: An Analysis of Third-Party Mobile SDKs Álvaro Feal, IMDEA Networks Institute, Spain, Julien Gamba, IMDEA Networks Institute, Spain, Juan Tapiador, Universidad Carlos III de Madrid, Spain, Primal Wijesekera, University of California, Berkeley, USA, Joel Reardon, University of Calgary, Canada, Serge Egelman, University of California, Berkeley, USA and Narseo Vallina-Rodriguez, University of California, Berkeley, USA 2. AI and the Right to Explanation: Three Legal Bases under the GDPR Tiago Sérgio Cabral, Vieira de Almeida and Associados, Portugal 3. A Comparison of Data Protection Regulations for Automotive Systems Ala’a Al-Momani, Ulm University, Germany, Christoph Bösch, Ulm University, Germany and Frank Kargl, Ulm University, Germany 4. Misaligned Union Laws? A Comparative Analysis of Certification in the Cybersecurity Act and the General Data Protection Regulation Irene Kamara, Vrije Universiteit Brussel, Belgium 5. Aggregation, Synthesisation and Anonymisation: A Call for a Risk-based Assessment of Anonymisation Approaches Sophie Stalla-Bourdillon,University of Southampton, UK and Alfred Rossi, Ohio State University, USA 6. The Role of the EU Fundamental Right to Data Protection in an Algorithmic and Big Data World Yordanka Ivanova, Vrije University Brussels, Belgium 7. Implementing AI in Healthcare: An Ethical and Legal Analysis Based on Case Studies Eduard Fosch-Villaronga, Leiden University, Netherlands,Davit Chokoshvili, Megeno S.A., Luxembourg, Vibeke Binz Vallevik, DNV GL Precision Medicine research program, Marcello Ienca, ETH Zurich, Switzerlandand Robin L Pierce, Tilburg University, Netherlands 8. Technological Experimentation Without Adequate Safeguards? Interoperable EU Databases and Access to the Multiple Identity Detector by SIRENE Bureaux Diana Dimitrova, FIZ Karlsruhe, Germany and Teresa Quintel, University of Luxembourg Closing Remarks Wojciech Wiewiórowski

Cutting-edge research from the world-leading Computers, Privacy and Data Protection conference (CPDP). The Computers, Privacy and Data Protection series, now published by Hart, collects multidisciplinary peer-reviewed scientific manuscripts that are the result of papers that have been presented at the international Computers, Privacy and Data Protection conference (CPDP), that takes place every year in Brussels. As a world-leading multidisciplinary conference, CPDP gathers, within an atmosphere of independence and mutual respect, academics, lawyers, practitioners, policy-makers, industry and civil society from all over the world, offering them an arena to exchange ideas and discuss the latest emerging issues and trends. The series provides cutting edge research on legal, regulatory, academic and technological development in privacy and data protection. The books, which have been published since 2009 with growing success, are comprised of academic research dealing with topics such as recent developments in privacy and data protection law, multidisciplinary and interdisciplinary insights in privacy and data protection, privacy by design, privacy enhancing technologies and emerging technologies such as conversational agents, machine-learning algorithms, internet of things and cloud computing. The book series discusses daring and prospective approaches and serves as an insightful resource for readers with an interest in computers, privacy and data protection.