Smart devices and mobile applications (apps) are increasingly indispensable to modern people. When users operate their smart devices and apps, however, they share a variety of personal information with a multitude of known or unknown players, which significantly raises the public’s concerns on possible privacy invasion. How to protect user’s mobile privacy thus becomes a timely issue. This thesis explores how apps collect personal data, which type of data is collected, and why those practices impose risks on user’s personal privacy. The thesis further analyze the opinions and staff reports of the European Union, United States and International Governmental Organizations newly published in 2013, and find that the notice-and-consent mechanism remains a primary regulatory measure in securing mobile privacy. As identifying the key rule of transparency, the thesis makes an empirical study survey Taiwanese mobile apps user how their attitude and awareness toward current notice-and-consent mechanism and mobile privacy. Basing on the result of the survey, the thesis concludes the deficiencies of notice-and-consent mechanism and present an alternative approach to enhance the efficacy of privacy notice. On those bases, this thesis critically reviews Taiwan’s Personal Information Protection Act and other regulation pertinent to mobile privacy protection, and propose feasible resolutions to contemporary mobile privacy issues in Taiwan.