On site: to opt-in or opt-out?: it depends on the question
Communications of the ACM
ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
An XPath-based preference language for P3P
WWW '03 Proceedings of the 12th international conference on World Wide Web
Automated analysis of P3P-enabled Web sites
ICEC '03 Proceedings of the 5th international conference on Electronic commerce
Maturing e-Privacy with P3P and Context Agents
EEE '05 Proceedings of the 2005 IEEE International Conference on e-Technology, e-Commerce and e-Service (EEE'05) on e-Technology, e-Commerce and e-Service
Power strips, prophylactics, and privacy, oh my!
SOUPS '06 Proceedings of the second symposium on Usable privacy and security
An analysis of P3P-enabled web sites among top-20 search results
ICEC '06 Proceedings of the 8th international conference on Electronic commerce: The new e-commerce: innovations for conquering current barriers, obstacles and limitations to conducting successful business on the internet
User interfaces for privacy agents
ACM Transactions on Computer-Human Interaction (TOCHI)
Beginning Regular Expressions
HIPAA's Effect on Web Site Privacy Policies
IEEE Security and Privacy
A Survey and Analysis of the P3P Protocol's Agents, Adoption, Maintenance, and Future
IEEE Transactions on Dependable and Secure Computing
Electronic Commerce Research and Applications
Handbook of Parametric and Nonparametric Statistical Procedures
Handbook of Parametric and Nonparametric Statistical Procedures
An analysis of privacy signals on the World Wide Web: Past, present and future
Information Sciences: an International Journal
Proceedings of the 9th annual ACM workshop on Privacy in the electronic society
Understanding privacy policies
Empirical Software Engineering
Are Online Privacy Policies Readable?
International Journal of Information Security and Privacy
Privacy policies and national culture on the internet
Information Systems Frontiers
Virtual private social networks and a facebook implementation
ACM Transactions on the Web (TWEB)
| Hi-index | 0.00 |
Numerous studies over the past ten years have shown that concern for personal privacy is a major impediment to the growth of e-commerce. These concerns are so serious that most if not all consumer watchdog groups have called for some form of privacy protection for Internet users. In response, many nations around the world, including all European Union nations, Canada, Japan, and Australia, have enacted national legislation establishing mandatory safeguards for personal privacy. However, recent evidence indicates that Web sites might not be adhering to the requirements of this legislation. The goal of this study is to examine the posted privacy policies of Web sites, and compare these statements to the legal mandates under which the Web sites operate. We harvested all available P3P (Platform for Privacy Preferences Protocol) documents from the 100,000 most popular Web sites (over 3,000 full policies, and another 3,000 compact policies). This allows us to undertake an automated analysis of adherence to legal mandates on Web sites that most impact the average Internet user. Our findings show that Web sites generally do not even claim to follow all the privacy-protection mandates in their legal jurisdiction (we do not examine actual practice, only posted policies). Furthermore, this general statement appears to be true for every jurisdiction with privacy laws and any significant number of P3P policies, including European Union nations, Canada, Australia, and Web sites in the USA Safe Harbor program.