Johanna Johansen

About

Short Bio

I have a quite diverse background, with studies in computer science, visual communication, and social sciences, and even more varied work experience. I have defended my PhD in June 2022 at the Institute of Informatics of University of Oslo on the topic of privacy and usability.

I have extensive experience from industry, where I worked before my PhD, for more than 10 years in IT and multimedia design, including 2.5 years at the large multinational software development company called Forsta (with offices also in Silicon Valley, with which I was actively involved).

I have a good research production, considering the short period that I have been doing research, i.e., I wrote the PhD thesis in 3 years. My production of international quality research works is both broad and deep, publishing mostly journal articles of considerable length in well known venues. The breadth of my research covers fields as diverse as privacy, AI, ethics, HCI, ICT for education, and psychology. The depth is witnessed by introducing several novel concepts and methods such as the revealing of evidence of a new form of AI bias, namely "human-to-computer bias transference", or the idea of "measuring the usability of privacy", or the definition of the concept of "Privacy Labels".

I have formal training in teaching and supervision from the University of Oslo as well as from the Høgskolen i Oslo og Akershus (now OsloMet). Because of this I was able to take on the challenge of developing the 4 courses that I am responsible for at NTNU. I have supervised 1 MSc and 9 BSc students, and am currently offering multiple MSc topics related to my research.

I have a considerable collaboration network (both European and national, as well as in governmental organizations, industry and academia), which I use both for research and teaching cooperation (e.g., invite guest lectures in my courses) and also for forming consortia for project applications (with my current plans going into an European/Nordic project on Usable Privacy).

I have been involved in numerous academic management activities, from organization of conferences and events, to development of projects, and management and coordination.

Honors and Awards

I received the "Kristine Bonnevie fellowship" from University of Oslo, 2020 during my PhD.

Background

Projects

I have been affiliated and contributed to several research projects during my PhD at UiO.

I was part of the UiO team in the European Joint Undertaking project SCOTT -- Secure COnnected Trustable Things, working on one of the technology building blocks there, namely on the Security Classification tool called LightSC. The project had a budget of ca.37 Mil.Euro, with 57 partners from 12 countries, for 3 years ending in 2020.
I contributed to the DigI project with the InfoInternet for Education paper, which focuses on children, explaining how to develop educational applications that make good use of the special characteristics of InfoInternet and target well the community. DigI was an on-the-ground project, working on deploying Internet infrastructure in DR Congo and Tanzania under the Basic Internet Foundation.
In the project IoTSec -- IoT Security for Smart Grids, which was the largest project accepted at the call on security of the first IKTPLUSS program of NFR in 2016, I contributed with the Privacy Labelling research work. The project was coordinated by Josef Noll from University of Oslo for the period 2016-2020 and had a budget of ca.32 Mil.NOK.

Collaborations

I have good interaction with industry, as well as academia and governmental organizations, which I put to use in several ways:

offering MSc students practice opportunities already during the master studies, thus easing their entering into the industrial job market (e.g., their project can be done together with a company, or they can take internships in companies where relevant practical expertise exists).
forming project consortia focusing the projects on producing applications and exploiting their innovation potential. Bringing partners from different disciplines is a strong desire in current funding calls, and my interdisciplinary background is good for managing such teams.

Some of my industry connections include:

Forsta AS from Norway – a previous employer, then called Confirmit – (on web development, privacy assessment, text analysis, or even sentiment analysis; and potential for student internships internationally);
Tellu IoT AS from Norway – (on IoT systems and mobile apps for smart home and e-health);
PrivacyCompany from Europe – (on privacy labelling);
Phillips Research from Netherlands – on privacy (and potential for student internships).

Connections with academia or governmental organizations, national and international:

Norwegian Defense Intelligence College (FEH), now part of Norwegian Defense School, on psychological aspects and user studies;
Chalmers University (SE) on privacy-enhancing technologies (specifically applicable to privacy agreements and GDPR);
Karlstad University (SE) on security and privacy generally;
EuroPriSe (DE) on privacy certifications and regulations;
Unabhängiges Landeszentrum für Datenschutz (ULD), Data Protection Authority of the Schleswig-Holstein state in Germany.

Work Experience (past)

University of Oslo, Doctoral Research Fellow
I was PhD student in the Reliable Systems group at the Department of Informatics. The PhD project was part of the Gemini Centre on IoT, closely interacting with SINTEF and NTNU. The goal of the PhD was to study privacy concepts in IoT (Internet of Things) from the point of view of the user. In my PhD I developed methods of conveying complicated concepts related to privacy in an intuitive and understandable manner, for common users of the IoT systems. The administrative part of my work involved management of the Cyber Physical Systems Laboratory (CPS Lab), MSc student supervision (partly), workshop/conference organization, PR activities and graphic design for the group activities.
Confirmit, R&D Department, Oslo (now Fostra), Web Developer
Confirmit AS was a software company that developed software and services that performs quantitative data analyse to help businesses listen to their clients, markets, and employees' voices. I worked with programming and design for the "Reporting" part of Confirmit platform.
I led the CSS group (for Cascading Style Sheet) taking also the role of “communication intermediary” between designers in Silicon Valey and developers in Norway, because of my background in both design and programming. This was essential for allowing fast and easy understanding between these two different groups which need to talk to each other. I worked in an international environment (the Oslo office alone had around 21 nationalities) collaborating closely with our offices in Russia and USA Silicon Valley. Some of the clients of Confirmit were: Sony, Disney, Amazon, Visa, Accenture.
Rayon Design AS, Oslo, Multimedia Designer / Front-end Developer
Rayon Design AS was a full service design agency, specializing in increasing brand awareness through visual communication in all modern media channels. At Rayon I worked with multimedia design and web applications. Some of my tasks involved front-end developing, design for user experience, user analysis, information architecture, photography and animations, multimedia profiling, and conceptual design. Some of the clients of Rayon Design were Grand Hotel, Fursetgruppen, Varner Gruppen, Zalaris ASA.
University of Oslo, Communications Department, Multimedia Designer
I was involved in different media and design projects, collaborating with people from various departments of the University (leadership, administration, Appolon, Unipub, USIT). Examples of my work that was adopted across the University were: maps for all UiO campuses now visible on many communication materials of UiO like flyers or general maps; the covers for all the compendiums and all MSc/PhD thesis used in all departments and all institutes of UiO, based on fractals thus making all look similar yet different for each institution.

Education

University of Oslo, Department of Computer Science,
Doctor of Philosophy (PhD) in Computer Science, 2021 (3 years)
Title of the thesis: “Towards Making Privacy Usable”
(submitted September 2021 / defended June 2022 )
(evaluators: Docent Sebastian Pape – Goethe University Frankfurt
Prof. Emerita Louise Yngström – Stockholm University
Prof. Martin Steffen – University of Oslo)
(supervisors: Prof. Emeritus Olaf Owe – University of Oslo
Prof. Tore Pedersen – Norwegian Defense Intelligence School and Oslo New University College
Prof. Simone Fischer-Hübner – Karlstad University, Sweden
Dr. Amela Karahasanovic – SINTEF and Dr. Frank Alexander Kraemer – NTNU )

Post-education (Courses/Seminars/Summer Schools)

I have attended various kinds of post-educational events, i.e., outside standard eduction as PhD/MSc/BSc. These have given me knowledge in a wide range of topics.

14th IFIP Summer School on Privacy and Identity Management, August 2019 in Brugg/Windisch, Switzerland.
(General Co-Chairs: Samuel Fricker (FHNW Fachhochschule Nordwestschweiz, Switzerland), Stephan Krenn (AIT Austrian Institute of Technology)
The school had the goal to teach the participants about how to identify the main threats to individuals' rights and freedoms, discuss challenges to reconcile AI and privacy, and find ways to address conflicting goals and requirements, by taking into account technical, legal, economic, and social science challenges.
Some of the topics taught: • Ethics of Artificial Intelligence • On (avoiding) bias in data, algorithms and decisions • Ethics of nudging privacy and cybersecurity online • Privacy and convenience • Privacy as Innovation opportunity • Privacy-Preserving Big Data Analytics • Privacy, Profiling and Discrimination • Privacy Challenges in Public and Private Organizations • Online Personalized Advertising.
6th Privacy & Us Training Event, July 2019, Kiel, Germany.
(Organizer: Unabhängiges Landeszentrum für Datenschutz (ULD))
Training event for the early stage researchers within the The Privacy & Us MSCA Innovative Training Network (MSCA-ITN). The event was opened by Marit Hansen as keynote speaker with the talk: "Privacy & Usability -- The perspective of a Data Protection Regulator".
19th Seminar within the Framework of a Swedish IT Security Network for PhD students (SWITS 2019), June 2019, Karlstad, Sweden.
(Chair: Simone Fischer-Hübner)
Some of the topics: • Web Security • Privacy • Cyber Capabilities and Threat Detection • Traffic Analysis & Network Performance • IOT & Security • Security Analysis & Recommender Systems.
Oral dissemination and rhetoric for researchers, February 2019, University of Oslo, Norway.
(Trainer: Unni Kristin Skagestad)
Training in public speaking and oral dissemination of own research work.
13th International IFIP Summer School on Privacy and Identity Management -- Fairness, accountability and transparency in the age of big data, 20--24 August 2018 in Vienna, Austria.
(Chairs: Stephan Krenn -- AIT Austrian Institute of Technology, Simone Fischer-Hübner -- Karlstad University)
The IFIP Summer Schools take a holistic approach to society and technology and support interdisciplinary exchange through bringing together participants whose work combine technical, legal, regulatory, socio- economic, social or societal, political, ethical, anthropological, philosophical, or psychological perspectives. One of the goals of the school was to make a critical assessment from an interdisciplinary perspective of what harvesting, storage, processing, (re)use and commodification of (personal) data means for the (dis)empowerment of users/citizens/consumers as (not) being in control regarding identity, security, privacy and publicness.
Some of the topics taught: • Empowering the Human for Privacy Online • GDPR transparency • Data privacy vocabularies • Attitudes to dynamic consent • Security and Trust as Factors that influence the Adoption and Usage of Digital Technologies that Generate, Collect and Transmit User Data • IoT Privacy • Data Protection by Design.
The UX of IoT: Unpacking the Internet of Things, organised by Google, co-located with Mobile HCI, Vienna, Austria, September 4th, 2017.
(Organiser: Scott Jenson -- interface designer and strategic planner at Google Inc)
During the workshop we uncovered better ways to analyze IoT use cases. We created a series of base user tasks, that were likely shared across all smart devices, and from that we built a common set of technologies and guidelines for IoT products.
People, Personal Data and the Built Environment, co-located with DIS 2017, Designing Interactive Systems, Edinburgh, UK, June 10th , 2017.
(Organisers: Holger Schnädelbach -- University of Nottingham, David Kirk -- Northumbria University, Nicholas Dalton -- Nortumbria University, Elizabeth Churchill -- Google Inc, Nils Jäger -- University of Nottingham, Sara Nabil Ahmed -- Newcastle University)
The workshop brought together a community of researchers and practitioners interested in personal informatics and the design of interactive buildings and environments to foster critical discussion on the future role of personal data in interactions with the built environment. Regulations regarding the gathering and manipulation of the users' personal data (General Data Protection Regulation: End user rights, Data protection & consent) were considered.

Research

Highlights

My work has been published in highly ranked venues such as the IFIP series AICT on Advances in Information and Communication Technology, prestigious journals such as AI & Society, or as a book chapter in the book called "Human Factors in Privacy Research" published by Springer. My work is interdisciplinary, combining among others, aspects of privacy, usability, HCI, qualitative and quantitative methods, and psychology. Notable examples include:

My work with Simone Fischer-Hübner on "Making GDPR usable" has attracted interest from communities as diverse as the SOUPS (the USENIX Symposium on Usable Privacy and Security) and PETS (Privacy Enhancing Technologies Symposium), and has been invited for a Springer book chapter where we present a substantial validation process and novel method. This work uses extensively qualitative research methods for analysing legal texts as well as experts' opinions.
My work in the SCOTT European project on "Privacy Labelling" has attracted considerable interest from Europe, with many people attending our workshops and afterwards some contributing as coauthors to the position paper that I edited, now published in the journal Information & Computer Security. This developed a multidisciplinary definition of privacy labels, including business, legal, regulatory, educational, technological, and lay-person perspectives (the latter being the main target stakeholder).
My work with Tore Pedersen on "Biases in AI" published in Springer's AI & Society, took more than two years, involving tedious quantitative studies with more than 300 participants and multiple validation methods including eye-tracking. This proved the existence of a new (maybe disturbing) source of biases in AI, i.e., the transference of human biases into the software artifact. The biases stem from more long-term strong social, cultural, or educational influences, as well as more short- term weak influences such as (dis-)misinformation in the media or from working cultures. This work has attracted citations from renowned authors such as Baeza-Yates or in top venues such as Communications of ACM.

Topics

In research it is important to make connections between research areas, especially when working in interdisciplinary or broad fields such as Privacy or Artificial Intelligence. Multi-disciplinary synergies need the involvement of different institutions and people, promoting novel ideas and unexpected solutions. A positive outcome of doing such research is the many fruitful collaborations that are created, and a diverse network of partners. During my work I have interacted with diverse people from different fields of study such as privacy, law, psychology, interaction design, or software, having various backgrounds, from students and developers to professors and CTOs. Some of the topics I have worked on are detailed below.

USABILITY OF PRIVACY
I have worked during my PhD on studying the GDPR and privacy in general with the focus on making privacy regulations more usable (see publications tab). Usability as a concept has been traditionally developed for expert systems, i.e., complicated systems that are having complicated interfaces and require non-trivial interaction processes usually done by experts (e.g., plane pilot’s interactions with a flight control panel). Privacy is a very complex concept as well, which is one of the reasons that people usually give up thinking about privacy, especially when it is exacerbated by the complicated technology and data traces. Even more so, privacy is a concept that has relevance for common users, not only experts, as it is a human right (appearing in the Universal Declaration of Human Rights). It is then clear that usability is paramount for making privacy accessible to common people, thus allowing them to understand and exert their rights, as well as participate in the modern data economy and not just be passively subjected to it.
Examples:
- My Usable Privacy Cube model from the paper "Making GDPR Usable: A Model to Support Usability Evaluations of Privacy" has been well received by the EuroPriSe organization from Germany who is the most advanced GDPR certification scheme in Europe (who started from Germany in the early 2000s). The future can include taking up some of the usable privacy criteria that I have developed into the next version of their certification process.
  I have prepared a short video presentation of the Usable Privacy Cube model (see the Knowledge Transfer tab). This was also presented at the SOUPS – Symposium on Usable Privacy and Security, which is the major publication venue in this field.
- The Privacy Labels concept from the paper "A multidisciplinary definition of privacy labels" has attracted wide interest from both academia and industry, e.g., the many partners in the SCOTT and IoTSec projects where I have presented a couple of times.
BIASES TRANSFERENCE FROM HUMANS TO AI AND AUTOMATED DECISION SYSTEMS
I have worked extensively with all aspects of this comprehensive empirical study for more than 2 years, now published in the Springer's main journal on this topic, namely AI & Society as the paper "Studying human-to-computer bias transference". Since the hypothesis that we have proposed and studied goes beyond the tradition in the field, which is that biases in AI and decission support systems come from the data on which these algorithms are trained, we had to provide strong evidence in our study. Therefore, we had multiple cohorts of subjects, taken from different platforms (both Amazon's Mechanical Turk and SurveyMonkey; as well as “on-the-street” respondents), and do thorough analyses of the data and our coding. We had included several control questions. We have used several techniques for devising our instruments, including eye-tracking technology in the lab at Karlstad University, and pilot testing to improve preliminary versions of our surveys.
This work has required good knowledge of quantitative methods for empirical studies and the adjacent theories and technologies, including statistics and data analysis. This has proven very fruitful because our results are ground-breaking, as we prove a second source of biases in AI, which not only that it has not been proven anywhere else before, but also very few people talk about such a possibility (we have found only two papers that mention the possibility that a human bias held by a person that designs a software system could be transferred to that software artifact).
Acceptance and Potential include:
- Eye-opener.
  The few people that we have told about this work, before it got published, during the several years long process of study and publication, had expressed surprise to the possibilities that our results imply. Particularly, Simone sees great potential to extend this into privacy biases; whereas prominent researchers cite now this work in top venues such as Communications of ACM.
- Applications in education.
  One application is to evaluating Computer Science bachelor programs; i.e., we could evaluate the efficiency of these programs in removing programmer biases transfers by applying our instruments (or specifically devised variants) at the beginning of the study and at the end to compare the transference percentages.
- Continuations into privacy biases such as “security=privacy” (as debunked in the book of Bruce Schneier) or “I have nothing to hide” (as debunked in the book of Daniel Solove).
SUSTAINABILITY IN SEEMINGLY UNRELATED FIELDS
An example of how technology can contribute to sustainability is my paper "InfoInternet for education in the Global South: A study of applications enabled by free information-only internet access in technologically disadvantaged areas". There we study how a form of Internet infrastructure, called InfoInternet, can be used in a mindful manner to enable educational applications in the Global South where this infrastructure is (meant to be) deployed. However, a large portion of the sustainability debate sees technology as affecting sustainability in a negative way; mainly through e-waste and energy consumption. One problem is that most technology people do not think of sustainability in their daily tasks because they do not see the direct relation of their work to “buzzwords” such as green energy or environmental destruction. Throughout my research and teaching I have seen quite often this misunderstanding. However, I have also seen how sustainability can be very much related to seemingly unrelated IT fields such as web development or graphic design. As a consequence, I have started in my teaching to at least try to reveal such “hidden” relationships and show how sustainability can be affected both positively and negatively by fields such as web, as well as digital media, regulations and legislation, or emerging technologies such as IoT or AI.
Efforts and Potential include:
- Sustainability in teaching.
  I have developed and have been teaching one MSc course on how to program web applications in a sustainable way. Here sustainability has various aspects, and only some of them relate to energy consumption (e.g., how much processing your algorithms need to do). Other aspects relate to making the web app available to disadvantaged groups or to how to define business goals, choose third-party services/libraries, or enable interoperability.
  However, sustainability can be taught in any course, definitely in all IT courses, even if teachers do not currently always see this. Sustainability can be one of the lectures or labs/seminar of a course. Metaphorically, one can see sustainability in IT as fire-escape in architecture, i.e., an architect dose many interesting things with a building, but she always needs to think of the fire-escape plan; the same an IT engineer can do many wonders with a software, but should always think of the sustainability plan. Sustainability can be even more important for digital records that new digital societies such as Norway abound of. Any form of improper manipulation (loss, change) of digital records can destabilize the society (one pillar of sustainability) or the economy (another of the three pillars).
- Digital Sustainability.
  The digitalization of society produces many digital resources that have to be preserved in a similar manner as physical resources. For example, much of the knowledge being produced nowadays is digital; be that research article, book, news/debate piece, or anything else from entertainment to health records or educational content. The modern society needs to learn how to sustainably handle these novel resources so that it minimizes double-spending, e.g., so that we do not “reinvent the wheel”. Just think of how libraries hold old newspaper editions; similarly we need to archive various digital resources (and considerable work is being done in this direction).

IoTSec -- Security in IoT for Smart Grids

IoTSec aims is to contribute to a secure and privacy-aware ecosystem for the Internet of Things.

SCOTT -- Secure COnnected Trustable Things

Horizon 2020 Joint Undertaking with budget ca. 34 Mil.Euro and consortium of 52+ partners from 12+ countries during 2017-2020.

Publications

2023

Fischer-Hubner, Simone; Johansen, Johanna. (2023) Expert Opinions as a Method of Validating Ideas: Applied to Making GDPR Usable. Springer
Academic chapter/article/Conference paper

2022

Johansen, Johanna. (2022) Towards Making Privacy Usable. Faculty of Mathematics and Computer Science Series of dissertations submitted to the Faculty of Mathematics and Natural Sciences, University of Oslo. (000)
Doctoral dissertation
Johansen, Johanna; Pedersen, Tore; Fischer-Hübner, Simone; Johansen, Christian; Schneider, Gerardo; Roosendaal, Arnold. (2022) A multidisciplinary definition of privacy labels. Information and Computer Security
Academic article

2021

Johansen, Johanna; Noll, Josef; Johansen, Christian. (2021) InfoInternet for education in the Global South: A study of applications enabled by free information-only internet access in technologically disadvantaged areas. African Journal of Science, Technology, Innovation and Development (AJSTID)
Academic article
Johansen, Johanna; Pedersen, Tore; Johansen, Christian. (2021) Studying human-to-computer bias transference. AI & Society: Knowledge, Culture and Communication
Academic article

2020

Johansen, Johanna; Fischer-Hübner, Simone. (2020) Making GDPR usable: A model to support usability evaluations of privacy. Springer Nature
Academic chapter/article/Conference paper
Shrestha, Manish; Johansen, Christian; Moghadam, Maunya D.; Johansen, Johanna; Noll, Josef. (2020) Tool Support for Security Classification for Internet of Things (long version). Universitetet i Oslo Universitetet i Oslo
Report

Journal publications

Johansen, Johanna; Pedersen, Tore; Fischer-Hübner, Simone; Johansen, Christian; Schneider, Gerardo; Roosendaal, Arnold. (2022) A multidisciplinary definition of privacy labels. Information and Computer Security
Academic article
Johansen, Johanna; Noll, Josef; Johansen, Christian. (2021) InfoInternet for education in the Global South: A study of applications enabled by free information-only internet access in technologically disadvantaged areas. African Journal of Science, Technology, Innovation and Development (AJSTID)
Academic article
Johansen, Johanna; Pedersen, Tore; Johansen, Christian. (2021) Studying human-to-computer bias transference. AI & Society: Knowledge, Culture and Communication
Academic article

Part of book/report

Fischer-Hubner, Simone; Johansen, Johanna. (2023) Expert Opinions as a Method of Validating Ideas: Applied to Making GDPR Usable. Springer
Academic chapter/article/Conference paper
Johansen, Johanna; Fischer-Hübner, Simone. (2020) Making GDPR usable: A model to support usability evaluations of privacy. Springer Nature
Academic chapter/article/Conference paper

Report

Johansen, Johanna. (2022) Towards Making Privacy Usable. Faculty of Mathematics and Computer Science Series of dissertations submitted to the Faculty of Mathematics and Natural Sciences, University of Oslo. (000)
Doctoral dissertation
Shrestha, Manish; Johansen, Christian; Moghadam, Maunya D.; Johansen, Johanna; Noll, Josef. (2020) Tool Support for Security Classification for Internet of Things (long version). Universitetet i Oslo Universitetet i Oslo
Report

Teaching

Courses

I am trained in teaching and supervision, having completed the standard (200 h) Higher Education Pedagogical training from the LINK Centre for Learning, Innovation and Academic Development at the University of Oslo, during the spring semester of 2021. I have been lecturing at BSc and MSc level ever since my position at NTNU started in October 2021, being main responsible for 4 courses per year, 2 every semester.

I have taken a pedagogical and research based approach in the planning and course materials that I have created anew for all my courses. Towards the end of each course I include novel concepts from relevant research papers (some published by me) including usability aspects, such as WCAG accessibility guidelines or modern privacy concepts from the GDPR. I promote and teach sustainability aspects specific for web, which seems to bewilder both the students and other teaches in IT due to the wrongly perceived dissociation between the two concepts. By the end, students gain a much wider perspective on sustainability as applicable to most aspects of society, including digital media, technology, or regulations.

Student's learning outcomes are a main goal for me as a teacher. That is why the alignment approach to course preparation is important, as well as various independent study methodologies including project work, self-assessment and continuous feedback (formative forms of assessment). This would also be supported by the grading system which should be relevant, fair, transparent, holistic, predictable, and, of course, support deep and lasting learning.

Research-based teaching where experiences from real projects make good examples and at least correlations with the latest technology used in the real programming environments make the students more enthusiastic and motivated. It is of course not always useful to teach the latest research, and the textbooks are still the best way to teach established practices, but spicing up the textbook with some of my own recent knowledge and experience make the best of examples. Another method that I find useful is to bring into the course experts from industry or academia to present specific technologies or applications that are relevant for the course, usually with the goal to provide the students an idea of the relevance of the course material. To those courses that involve project work, these presentations can be where the students can take their project topics from.

Supervision

I have supervised 1 MSc and 9 BSc students and currently offer MSc topics in areas related to my research.

For students interested in working with me, here are a few aspects of my supervision style to ponder upon.

I usually present a master topic in a short and open manner so that it can be adapted to the potential of the student. The topics are also thought to be attractive (i.e., titles and descriptions).
I like to investigate the potential of the student, and since my master topics are rather open, the precise path to take is shaped by both the background and the interests of the student. In this way the student takes more pleasure in the topic and is motivated, while in the end the thesis results in more and better work.
I like to offer topics connected to industry because many students are interested in starting to interact with a company during their MSc. Such topics are more restricted because the company does not want to use time on a topic that is not of genuine interest for their internal agenda. Therefore, I like to have a close interaction with the company already when designing the topics.
I closely monitor the student through periodic meetings and with a shared repository (like dropbox, git, Gdrive) where a working document/directory is constantly being updated.
The reading material is adapted to the student, also depending on the individual progress.
I make “delivery plans” together with the student, including long term milestones, but also short term weekly schedules.
I use collaborative tools such as Jira, Confluence, and Trello. However, students often come with their own preferred tools, and I am open to use those, whereas for writing I am open to both Latex as well as Google docs or Overleaf.
I am also open to allow interactions between students. In these situations it is very important to constantly keep the separation of the two topics clear. In the end students need to produce two theses, which have to be defended individually.
I keep an eye for students that have innovation potential. For them I try to steer their topic in a direction that can be afterwards commercialized.

Knowledge Transfer

Privacy Labels in 90 s

Short intro in everyday language. See article "A Multidisciplinary Definition of Privacy Labels: The Story of Princess Privacy and the Seven Helpers" on the ArXiV using story-telling for a more pleasant reading https://arxiv.org/abs/2012.01813

Making GDPR Usable

A Methodology to Support Usability Evaluations of Privacy. Presented in simplified language. Published in "Privacy and Identity Management. Data for Better Living: AI and Privacy" https://link.springer.com/chapter/10.1007/978-3-030-42504-3_18

Språkvelger

Johanna Johansen