Patrick Gage Kelley
Joanna Bresee
Lorrie Faith Cranor
Robert W. Reeder
ABSTRACT
We used an iterative design process to develop a privacy label that presents to consumers the ways organizations collect, use, and share personal information. Many surveys have shown that consumers are concerned about online privacy, yet current mechanisms to present website privacy policies have not been successful. This research addresses the present gap in the communication and understanding of privacy policies, by creating an information design that improves the visual presentation and comprehensibility of privacy policies. Drawing from nutrition, warning, and energy labeling, as well as from the effort towards creating a standardized banking privacy notification, we present our process for constructing and refining a label tuned to privacy. This paper describes our design methodology; findings from two focus groups; and accuracy, timing, and likeability results from a laboratory study with 24 participants. Our study results demonstrate that compared to existing natural language privacy policies, the proposed privacy label allows participants to find information more quickly and accurately, and provides a more enjoyable information seeking experience.
- ]]Balasubramanian, S. and Cole, C. "Consumers' Search and Use of Nutrition Information: The Challenge and Promise of the Nutrition Labeling and Education Act." Journal of Marketing. 2002. Vol. 66, 112--127.Google Scholar
- ]]Beard, T. C., Nowson, C. A., Riley, M. D. "Traffic-light food labels." Med J Aust. 2007;186:19.Google Scholar
- ]]Belser, B. Designing the Food Label: Nutrition Facts. AIGA Journal. 1994.Google Scholar
- ]]Buckley, P. and Shepherd, R. Ergonomic factors: The clarity of food labels. British Food Journal. 1993. 95Google Scholar
- ]]Byrd-Bredbenner, C., Alfieri, L., Wong, A., and Cottee, P. The Inherent Educatiional Qualities of Nutrition Labels. Family and Consumer Sciences Research Journal, Vol 29, No 3, March 2001 265--280.Google ScholarCross Ref
- ]]Cranor, L., Egelman, S., Sheng, S., McDonald, A., and Chowdhury, A. P3P Deployment on Websites. Electronic Commerce Research and Applications, Volume 7, Issue 3, Autumn 2008, Pages 274--293. Google ScholarDigital Library
- ]]Consumer Product Safety Commission. "Labeling Requirements for Toy and Game Advertisements." 2008. http://cpsc.gov/library/foia/foia08/brief/toygameads.pdfGoogle Scholar
- ]]DeJoy, D. M., Cameron, K. A., and Della, L. J. Post-exposure evaluation of warning effectiveness: A review of field studies and population-based research. The Handbook of Warnings. 2006. (35--48).Google Scholar
- ]]Downs J. S., Loewenstein G., and Wisdom J. Strategies for Promoting Healthier Food Choices. American Economic Review. 2009, vol. 99, issue 2, pages 159--64Google Scholar
- ]]Drichoutis AC, Lazaridis P, Nayga RM. 2006. Consumers' use of nutritional labels: a review of research studies and issues. Acad Marketing Sci Rev, no. 9.Google Scholar
- ]]The Energy Label. 2007. www.energyrating.gov.auGoogle Scholar
- ]]European Union Commission Directive 98/11/EC "Energy Labeling." 1998. http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:1998:071:0001:0008:EN:PDFGoogle Scholar
- ]]Food Standards Agency. "Signpost Labeling Research." 2005 http://www.food.gov.uk/foodlabelling/signposting/siognpostlabelresearch/Google Scholar
- ]]Jensen, C. and Potts, C. Privacy policies as decision-making tools: an evaluation of online privacy notices. SIGCHI. 2004. Google ScholarDigital Library
- ]]Kelley, P., A. McDonald, R. Reeder, and L. Cranor. P3P Expandable Grids. Poster at Privacy MindSwap Carnegie Mellon University. 2007. http://cups.cs.cmu.edu/soups/2008/posters/kelley.pdfGoogle Scholar
- ]]Kleimann Communication Group, Inc. Evolution of a Prototype Financial Privacy Notice. February 2006. Available: http://www.ftc.gov/privacy/privacyinitiatives/ftcfinalreport060228.pdfGoogle Scholar
- ]]Levy, A. and Hastak, M. Consumer Comprehension of Financial Privacy Notices. December 2008. Available: http://www.ftc.gov/privacy/privacyinitiatives/Levy-Hastak-Report.pdfGoogle Scholar
- ]]Maubach, N., Hoek J. "The Effect of Alternative Nutrition Information Formats on Consumers' Evaluations of a Children's Breakfast Cereal" Proceedings of the EParternships, Proof and Practice -- International Nonprofit and Social Marketing Conference 2008.Google Scholar
- ]]McDonald, A., Reeder, R. W., Kelley, P. G., and Cranor, L. F. A Comparison of Online Privacy Policies and Formats. Privacy Enhancing Technologies 2009. Google ScholarDigital Library
- ]]McDonald, A, and Cranor, L. The Cost of Reading Privacy Policies. Telecommunications Policy Research Conference, 2008.Google Scholar
- ]]Privacy Leadership Initiative. Privacy Notices Research Final Results, November 2001, Available at: http://www.understandingprivacy.org/content/library/datasum.pdf.Google Scholar
- ]]Reeder, R. W. Expandable Grids: A user interface visualization technique and a policy semantics to support fast, accurate security and privacy policy authoring. PhD thesis, Carnegie Mellon. 2008. http://www.robreeder.com/pubs/ReederThesis.pdf Google ScholarDigital Library
- ]]Reeder, R., Cranor, L., Kelley, P., and McDonald, A. A User Study of the Expandable Grid Applied to P3P Privacy Policy Visualization. Workshop on Privacy in the Electronic Society. 2008 Google ScholarDigital Library
- ]]Seymore, J. D., Lazarus Yaroch, A., Serdula M., Blanck, H. M., and Khan, L. K. "Impact of nutrition environmental interventions on point-of-purchase behavior in adults a review." Preventative Medicine 2004. 29: S108--S136.Google Scholar
- ]]The Center for Information Policy Leadership, H. W. L. Multi-layered notices.Google Scholar
- ]]Turow, J. Feldman, L., and Meltzer, K. Open to Exploitation: American Shoppers Online and Offline. The Annenberg Public Policy Center. 2005. http://www.annenbergpublicpolicycenter.org/NewsDetails.aspx?myId=31Google Scholar
- ]]U.S. Food and Drug Administration. A Food Labeling Guide. Center for Food Safety & Applied Nutrition. 1999. http://vm.cfsan.fda.gov/%7Edms/flg-toc.html.Google Scholar
- ]]U.S. Food and Drug Administration. "Guide to Nutrition Labeling and Education Act Requirements" 1994. http://www.fda.gov/ora/inspect_ref/igs/nleatxt.htmlGoogle Scholar
- ]]U.S. Food and Drug Administration. "New OTC Drug Facts Label" FDA Consumer Magazine. 2002. http://www.fda.gov/FDAC/features/2002/402_otc.htmlGoogle Scholar
- ]]W3C. The Platform for Privacy Preferences 1.0 (P3P1.0) Specification. http://www.w3.org/TR/P3P/Google Scholar
- ]]W3C. The Platform for Privacy Preferences 1.1 (P3P1.1) Specification. http://www.w3.org/TR/P3P11/Google Scholar
- ]]WELS Regulator (Australian Government). "WELS and Watermark." 2005. http://www.waterrating.gov.au/compliance.htmlGoogle Scholar
Index Terms
- A "nutrition label" for privacy
Recommendations
Designing a privacy label: assisting consumer understanding of online privacy practices
CHI EA '09: CHI '09 Extended Abstracts on Human Factors in Computing SystemsThis project describes the continuing development of a Privacy Label to present to consumers the ways organizations collect, use, and share personal information. Several studies have indicated the importance of privacy for consumers, yet current ...
A user study of the expandable grid applied to P3P privacy policy visualization
WPES '08: Proceedings of the 7th ACM workshop on Privacy in the electronic societyDisplaying website privacy policies to consumers in ways they understand is an important part of gaining consumers' trust and informed consent, yet most website privacy policies today are presented in confusing, legalistic natural language. Moreover, ...
A Comparative Study of Privacy Mechanisms and a Novel Privacy Mechanism [Short Paper]
Information and Communications SecurityAbstractPrivacy of PII(Personally Identifiable Information) on the Internet is a major concern of a netizen. On the Internet different service providers are supposed to publish their own privacy policies but understanding of these policies is a major ...
Comments