Automated Privacy Testing
Automated Privacy Testing
Automated privacy tests should run continuously throughout development, catching privacy issues before they reach production. These tests range from static analysis of code and configurations to dynamic testing of running applications. Integration with CI/CD pipelines ensures privacy validation happens automatically with every code change.
Static analysis tools can detect common privacy anti-patterns like logging personal data, storing data without encryption, or missing consent checks. Dynamic testing validates runtime behavior, ensuring consent mechanisms work correctly and data flows match documented purposes. API testing verifies that endpoints properly authenticate requests and limit data exposure.
// Automated privacy testing in CI/CD pipeline
class PrivacyCICD {
constructor() {
this.staticAnalyzer = new PrivacyStaticAnalyzer();
this.dynamicTester = new PrivacyDynamicTester();
this.apiTester = new PrivacyAPITester();
}
async runPipelineTests() {
const results = {
static: await this.runStaticAnalysis(),
dynamic: await this.runDynamicTests(),
api: await this.runAPITests(),
integration: await this.runIntegrationTests()
};
// Fail pipeline if critical issues found
if (this.hasCriticalIssues(results)) {
throw new Error('Privacy tests failed - critical issues found');
}
return results;
}
async runStaticAnalysis() {
const codePatterns = [
{
pattern: /console\.log\(.*user.*\)/gi,
severity: 'high',
message: 'Potential PII in logs'
},
{
pattern: /localStorage\.setItem\(['"]\w*token/gi,
severity: 'medium',
message: 'Sensitive data in localStorage'
},
{
pattern: /document\.cookie\s*=(?!.*Secure)/gi,
severity: 'high',
message: 'Insecure cookie setting'
},
{
pattern: /fetch\(['"]\w+\?.*email=/gi,
severity: 'high',
message: 'PII in URL parameters'
}
];
const configPatterns = [
{
file: 'package.json',
pattern: /"react-facebook-pixel"/,
check: this.checkFacebookPixelConfig
},
{
file: 'analytics.config.js',
pattern: /anonymizeIp:\s*false/,
severity: 'high',
message: 'IP anonymization disabled'
}
];
return await this.staticAnalyzer.analyze({
codePatterns,
configPatterns,
customRules: this.getCustomStaticRules()
});
}
async runDynamicTests() {
const browser = await this.launchBrowser();
const tests = [];
// Test consent flows
tests.push(await this.testConsentFlow(browser));
// Test cookie behavior
tests.push(await this.testCookieBehavior(browser));
// Test third-party blocking
tests.push(await this.testThirdPartyBlocking(browser));
// Test data collection
tests.push(await this.testDataCollection(browser));
await browser.close();
return this.aggregateTestResults(tests);
}
async testConsentFlow(browser) {
const page = await browser.newPage();
const results = [];
// Test 1: Banner appears for new visitors
await page.deleteCookies();
await page.goto(process.env.TEST_URL);
const bannerVisible = await page.waitForSelector('.consent-banner', {
visible: true,
timeout: 5000
}).catch(() => false);
results.push({
test: 'Consent banner visibility',
passed: bannerVisible
});
// Test 2: No cookies before consent
const cookiesBeforeConsent = await page.cookies();
const nonEssentialCookies = cookiesBeforeConsent.filter(c =>
!this.isEssentialCookie(c.name)
);
results.push({
test: 'No non-essential cookies before consent',
passed: nonEssentialCookies.length === 0,
details: nonEssentialCookies
});
// Test 3: Reject flow
await page.click('[data-action="reject-all"]');
await page.waitForTimeout(1000);
const cookiesAfterReject = await page.cookies();
const trackingCookies = cookiesAfterReject.filter(c =>
this.isTrackingCookie(c.name)
);
results.push({
test: 'No tracking cookies after rejection',
passed: trackingCookies.length === 0,
details: trackingCookies
});
return results;
}
async runAPITests() {
const endpoints = await this.discoverAPIEndpoints();
const results = [];
for (const endpoint of endpoints) {
// Test authentication requirements
const authTest = await this.testEndpointAuth(endpoint);
results.push(authTest);
// Test data exposure
const exposureTest = await this.testDataExposure(endpoint);
results.push(exposureTest);
// Test rate limiting
const rateLimitTest = await this.testRateLimiting(endpoint);
results.push(rateLimitTest);
}
return results;
}
async testDataExposure(endpoint) {
const response = await this.authenticatedRequest(endpoint);
const data = await response.json();
const exposure = {
endpoint: endpoint.path,
issues: []
};
// Check for unnecessary data
const unnecessaryFields = this.identifyUnnecessaryFields(data, endpoint.purpose);
if (unnecessaryFields.length > 0) {
exposure.issues.push({
type: 'over-exposure',
fields: unnecessaryFields
});
}
// Check for unsanitized data
const unsanitizedFields = this.identifyUnsanitizedData(data);
if (unsanitizedFields.length > 0) {
exposure.issues.push({
type: 'unsanitized',
fields: unsanitizedFields
});
}
return {
test: `Data exposure - ${endpoint.path}`,
passed: exposure.issues.length === 0,
issues: exposure.issues
};
}
}
// Privacy monitoring for production
class PrivacyMonitor {
constructor() {
this.alerts = new AlertManager();
this.metrics = new MetricsCollector();
}
async startMonitoring() {
// Monitor consent rates
this.monitorConsentRates();
// Monitor data access patterns
this.monitorDataAccess();
// Monitor third-party data flows
this.monitorThirdPartyFlows();
// Monitor user rights requests
this.monitorRightsRequests();
}
monitorConsentRates() {
setInterval(async () => {
const rates = await this.calculateConsentRates();
// Alert on unusual patterns
if (rates.acceptance < 0.1) {
await this.alerts.send({
severity: 'warning',
message: 'Unusually low consent rate',
details: rates
});
}
// Track metrics
this.metrics.record('consent.acceptance_rate', rates.acceptance);
this.metrics.record('consent.rejection_rate', rates.rejection);
}, 60 * 60 * 1000); // Hourly
}
monitorDataAccess() {
// Real-time monitoring of data access
this.accessMonitor = new DataAccessMonitor({
onSuspiciousAccess: async (event) => {
await this.alerts.send({
severity: 'high',
message: 'Suspicious data access detected',
details: event
});
},
patterns: [
{
name: 'bulk_export',
condition: (event) => event.recordCount > 1000,
severity: 'medium'
},
{
name: 'after_hours',
condition: (event) => this.isAfterHours(event.timestamp),
severity: 'low'
},
{
name: 'sensitive_data',
condition: (event) => event.dataTypes.includes('sensitive'),
severity: 'high'
}
]
});
}
async monitorThirdPartyFlows() {
const monitor = new NetworkMonitor();
monitor.on('request', async (request) => {
if (this.isThirdPartyRequest(request)) {
// Check if consent exists
const hasConsent = await this.checkConsentForRequest(request);
if (!hasConsent) {
await this.alerts.send({
severity: 'critical',
message: 'Unconsented third-party data flow',
details: {
url: request.url,
data: request.data,
timestamp: new Date().toISOString()
}
});
// Block the request if possible
if (request.blockable) {
request.block();
}
}
// Log for audit
await this.logThirdPartyFlow(request, hasConsent);
}
});
}
}