A "nutrition label" for privacy

Authors:
Patrick Gage Kelley;Joanna Bresee;Lorrie Faith Cranor;Robert W. Reeder
Affiliations:
Carnegie Mellon University;Carnegie Mellon University;Carnegie Mellon University;Trust User Experience (TUX)
Venue:
Proceedings of the 5th Symposium on Usable Privacy and Security
Year:
2009

Citing 4
Cited 23

Privacy policies as decision-making tools: an evaluation of online privacy notices

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
P3P deployment on websites

Electronic Commerce Research and Applications
A user study of the expandable grid applied to P3P privacy policy visualization

Proceedings of the 7th ACM workshop on Privacy in the electronic society
Expandable grids: a user interface visualization technique and a policy semantics to support fast, accurate security and privacy policy authoring

Expandable grids: a user interface visualization technique and a policy semantics to support fast, accurate security and privacy policy authoring

A Comparative Study of Online Privacy Policies and Formats

PETS '09 Proceedings of the 9th International Symposium on Privacy Enhancing Technologies
Standardizing privacy notices: an online study of the nutrition label approach

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Communicating software agreement content using narrative pictograms

CHI '10 Extended Abstracts on Human Factors in Computing Systems
Towards a personalized privacy management framework

Proceedings of the 2010 ICSE Workshop on Software Engineering for Secure Systems
Textured agreements: re-envisioning electronic consent

Proceedings of the Sixth Symposium on Usable Privacy and Security
Token attempt: the misrepresentation of website privacy policies through the misuse of p3p compact policy tokens

Proceedings of the 9th annual ACM workshop on Privacy in the electronic society
ConsentCanvas: automatic texturing for improved readability in End-User License Agreements

HLT-SS '11 Proceedings of the ACL 2011 Student Session
Attitudes toward online availability of US public records

Proceedings of the 12th Annual International Digital Government Research Conference: Digital Government Innovation in Challenging Times
Third-party apps on Facebook: privacy and the illusion of control

CHIMIT '11 Proceedings of the 5th ACM Symposium on Computer Human Interaction for Management of Information Technology
Privacy: is there an app for that?

Proceedings of the Seventh Symposium on Usable Privacy and Security
Security versus convenience? An experimental study of user misperceptions of wireless internet service quality

Decision Support Systems
Sensor tricorder: what does that sensor know about me?

Proceedings of the 12th Workshop on Mobile Computing Systems and Applications
Enhancing privacy in cloud computing via policy-based obfuscation

The Journal of Supercomputing
Expectation and purpose: understanding users' mental models of mobile app privacy through crowdsourcing

Proceedings of the 2012 ACM Conference on Ubiquitous Computing
A conundrum of permissions: installing applications on an android smartphone

FC'12 Proceedings of the 16th international conference on Financial Cryptography and Data Security
A PLA-based privacy-enhancing user modeling framework and its evaluation

User Modeling and User-Adapted Interaction
Understanding privacy policies

Empirical Software Engineering
Evaluating the Readability of Privacy Policies in Mobile Environments

International Journal of Mobile Human Computer Interaction
An online experiment of privacy authorization dialogues for social applications

Proceedings of the 2013 conference on Computer supported cooperative work
Privacy as part of the app decision-making process

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Materializing trust as an understandable digital concept

CHI '13 Extended Abstracts on Human Factors in Computing Systems
Sleights of privacy: framing, disclosures, and the limits of transparency

Proceedings of the Ninth Symposium on Usable Privacy and Security
Sunlight or sunburn: a survey of attitudes toward online availability of US public records

Information Polity - Special issue on Open Government and Public Participation: Issues and Challenges in Creating Public Value

Quantified Score

Hi-index	0.00

Visualization

Abstract

We used an iterative design process to develop a privacy label that presents to consumers the ways organizations collect, use, and share personal information. Many surveys have shown that consumers are concerned about online privacy, yet current mechanisms to present website privacy policies have not been successful. This research addresses the present gap in the communication and understanding of privacy policies, by creating an information design that improves the visual presentation and comprehensibility of privacy policies. Drawing from nutrition, warning, and energy labeling, as well as from the effort towards creating a standardized banking privacy notification, we present our process for constructing and refining a label tuned to privacy. This paper describes our design methodology; findings from two focus groups; and accuracy, timing, and likeability results from a laboratory study with 24 participants. Our study results demonstrate that compared to existing natural language privacy policies, the proposed privacy label allows participants to find information more quickly and accurately, and provides a more enjoyable information seeking experience.