Defining Privacy: How Users Interpret Technical Terms in Privacy Policies

Proceedings on Privacy Enhancing Technologies. Privacy Enhancing Technologies Symposium Pub Date : 2021-04-27 DOI:10.2478/popets-2021-0038

Jenny Tang, Hannah Shoemaker, Ada Lerner, Eleanor Birrell

{"title":"Defining Privacy: How Users Interpret Technical Terms in Privacy Policies","authors":"Jenny Tang, Hannah Shoemaker, Ada Lerner, Eleanor Birrell","doi":"10.2478/popets-2021-0038","DOIUrl":null,"url":null,"abstract":"Abstract Recent privacy regulations such as GDPR and CCPA have emphasized the need for transparent, understandable privacy policies. This work investigates the role technical terms play in policy transparency. We identify potentially misunderstood technical terms that appear in privacy policies through a survey of current privacy policies and a pilot user study. We then run a user study on Amazon Mechanical Turk to evaluate whether users can accurately define these technical terms, to identify commonly held misconceptions, and to investigate how the use of technical terms affects users’ comfort with privacy policies. We find that technical terms are broadly misunderstood and that particular misconceptions are common. We also find that the use of technical terms affects users’ comfort with various privacy policies and their reported likeliness to accept those policies. We conclude that current use of technical terms in privacy policies poses a challenge to policy transparency and user privacy, and that companies should take steps to mitigate this effect.","PeriodicalId":74556,"journal":{"name":"Proceedings on Privacy Enhancing Technologies. Privacy Enhancing Technologies Symposium","volume":"2021 1","pages":"70 - 94"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings on Privacy Enhancing Technologies. Privacy Enhancing Technologies Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.2478/popets-2021-0038","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

Abstract

Abstract Recent privacy regulations such as GDPR and CCPA have emphasized the need for transparent, understandable privacy policies. This work investigates the role technical terms play in policy transparency. We identify potentially misunderstood technical terms that appear in privacy policies through a survey of current privacy policies and a pilot user study. We then run a user study on Amazon Mechanical Turk to evaluate whether users can accurately define these technical terms, to identify commonly held misconceptions, and to investigate how the use of technical terms affects users’ comfort with privacy policies. We find that technical terms are broadly misunderstood and that particular misconceptions are common. We also find that the use of technical terms affects users’ comfort with various privacy policies and their reported likeliness to accept those policies. We conclude that current use of technical terms in privacy policies poses a challenge to policy transparency and user privacy, and that companies should take steps to mitigate this effect.

查看原文本刊更多论文

定义隐私：用户如何解释隐私政策中的技术条款

摘要最近的隐私法规，如GDPR和CCPA，强调了透明、可理解的隐私政策的必要性。这项工作调查了技术术语在政策透明度中的作用。我们通过对当前隐私政策的调查和试点用户研究，确定了隐私政策中出现的可能被误解的技术术语。然后，我们在Amazon Mechanical Turk上进行了一项用户研究，以评估用户是否能够准确定义这些技术术语，找出普遍存在的误解，并调查技术术语的使用如何影响用户对隐私政策的满意度。我们发现，技术术语被广泛误解，而且特定的误解很常见。我们还发现，技术术语的使用会影响用户对各种隐私政策的满意度，以及他们接受这些政策的可能性。我们的结论是，目前在隐私政策中使用技术术语对政策透明度和用户隐私构成了挑战，公司应该采取措施减轻这种影响。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings on Privacy Enhancing Technologies. Privacy Enhancing Technologies Symposium

自引率

0.00%

发文量

审稿时长

16 weeks