Access the full text.
Sign up today, get DeepDyve free for 14 days.
G. Lindgaard, Gary Fernandes, Cathy Dudek, Judith Brown (2006)
Attention web designers: You have 50 milliseconds to make a good first impression!Behaviour & Information Technology, 25
D. Janan, S. Idris (2012)
Readability : The limitations of an approach through formulae
(1948)
A formula for predicting readability: Instructions
concerning the processing of personal data and the protection of privacy in the electronic communications sector (directive on privacy and electronic communications)
Coverage : Are the policies covering the set of topics they are supposed to address?
A. Antón, J. Earp, Matthew Vail, Neha Jain, Carrie Gheen, Jack Frink (2007)
HIPAA's Effect on Web Site Privacy PoliciesIEEE Security & Privacy, 5
Logan Lebanoff, Fei Liu (2018)
Automatic Detection of Vague Words and Sentences in Privacy Policies
The Privacy Policy Landscape After the GDPR 17
(2019)
We read 150 privacy policies. they were an incomprehensible disaster.
A. Antón, J. Earp, Angela Reese (2002)
Analyzing Website privacy requirements using a privacy goal taxonomyProceedings IEEE Joint International Conference on Requirements Engineering
(2016)
Self-Regulation and Competition in Privacy PoliciesThe Journal of Legal Studies, 45
Matthew Vail, J. Earp, A. Antón (2008)
An Empirical Study of Consumer Perceptions and Comprehension of Web Site Privacy PoliciesIEEE Transactions on Engineering Management, 55
Martin Degeling, Christine Utz, Christopher Lentzsch, Henry Hosseini, F. Schaub, Thorsten Holz (2018)
We Value Your Privacy ... Now Take Some CookiesInformatik Spektrum, 42
A. Antón, J. Earp, Q. He, William Stufflebeam, D. Bolchini, Carlos Jensen (2004)
Financial privacy policies and the need for standardizationIEEE Security & Privacy Magazine, 2
George Milne, M. Culnan (2002)
Using the Content of Online Privacy Notices to Inform Public Policy: A Longitudinal Analysis of the 1998-2001 U.S. Web SurveysThe Information Society, 18
Sebastian Zimmeck, Ziqi Wang, Lieyong Zou, Roger Iyengar, Bin Liu, F. Schaub, Shomir Wilson, N. Sadeh, S. Bellovin, J. Reidenberg (2017)
Automated Analysis of Privacy Requirements for Mobile Apps
J. Turow, Michael Hennessy, Nora Draper (2018)
Persistent Misperceptions: Americans’ Misplaced Confidence in Privacy Policies, 2003–2015Journal of Broadcasting & Electronic Media, 62
M. Napierala (2014)
What Is the Bonferroni Correction ?
Passive Voice Index: gives the percentage of sentences that contain passive verb forms
Giuseppe Contissa, K. Docter, F. Lagioia, Marco Lippi, H. Micklitz, Przemyslaw Palka, G. Sartor, Paolo Torroni (2018)
CLAUDETTE meets GDPR: Automating the Evaluation of Privacy Policies using Artificial Intelligence
Shomir Wilson, F. Schaub, Aswarth Dara, Frederick Liu, Sushain Cherivirala, P. Leon, Mads Andersen, Sebastian Zimmeck, Kanthashree Sathyendra, N. Russell, Thomas Norton, E. Hovy, J. Reidenberg, N. Sadeh (2016)
The Creation and Analysis of a Website Privacy Policy Corpus, 1
Hamza Harkous, Kassem Fawaz, R. Lebret, F. Schaub, K. Shin, K. Aberer (2018)
Polisis: Automated Analysis and Presentation of Privacy Policies Using Deep LearningArXiv, abs/1802.02561
R. Sorelle (2001)
US Department of Health and Human Services gives states wider latitude in choosing services to be covered by Medicaid.Circulation, 104 8
WayBackPack: Open source scientific tools for Python
Marco Lui, Timothy Baldwin (2012)
langid.py: An Off-the-shelf Language Identification Tool
Chang Liu, K. Arnett (2002)
Raising a Red Flag on Global WWW Privacy PoliciesJournal of Computer Information Systems, 43
(2003)
“Summary of the HIPAA privacy rule,”
W. Tesfay, Peter Hofmann, Toru Nakamura, S. Kiyomoto, Jetzabel Serna (2018)
PrivacyGuide: Towards an Implementation of the EU GDPR on Internet Privacy Policy EvaluationProceedings of the Fourth ACM International Workshop on Security and Privacy Analytics
Yoon Kim (2014)
Convolutional Neural Networks for Sentence Classification
Readability : If they read
J. Kincaid, James Aagard, John O'Hara, Larry Cottrell (1981)
Computer readability editing systemIEEE Transactions on Professional Communication, PC-24
We find a noticeable improvement in the coverage of topics like data retention (6.3%), handling special audiences (6.5%), and user access rights (7.8%) in the policies
Lexicon Count: gives the number of words available in the text: # words
Our ambiguity analysis across eight metrics covering data collection, sharing, and retention shows 20.5% of the policies had an improved (i.e., lower) ambiguity while 14.3% had worse values
Hamza Harkous, Kassem Fawaz, K. Shin, K. Aberer (2016)
PriBots: Conversational Privacy with Chatbots
R. Ramanath, Fei Liu, N. Sadeh, Noah Smith (2014)
Unsupervised Alignment of Privacy Policies using Hidden Markov Models
Katharina Reinecke, Tom Yeh, Luke Miratrix, Rahmatri Mardiko, Yuechen Zhao, Jenny Liu, Krzysztof Gajos (2013)
Predicting users' first impressions of website aesthetics with a quantification of perceived visual complexity and colorfulnessProceedings of the SIGCHI Conference on Human Factors in Computing Systems
A. Lamsweerde (2001)
Goal-oriented requirements engineering: a guided tourProceedings Fifth IEEE International Symposium on Requirements Engineering
Marco Lippi, Przemyslaw Palka, Giuseppe Contissa, F. Lagioia, H. Micklitz, G. Sartor, Paolo Torroni (2018)
CLAUDETTE: an automated detector of potentially unfair clauses in online terms of serviceArtificial Intelligence and Law, 27
(2002)
Privacy online: A report on the information practices and policies of commercial web sites
(2019)
Privacy policies are still too horrible to read in full.
(2002)
“How to comply with the privacy of consumer financial information rule of the gramm-leach-bliley act,”
(1996)
Some Preliminary Comments on the DIRECTIVE 95/46/EC OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data., 2
J. Kincaid, S. Schalow (1985)
The Computer Readability Editing SystemProceedings of the Human Factors and Ergonomics Society Annual Meeting, 29
Ioannis Konstas, Frank Keller, Vera Demberg, Mirella Lapata (2014)
Proceedings of the 2014 Conference on Empirical Methods in Natural Language Processing, EMNLP 2014, October 25-29, 2014, Doha, Qatar, A meeting of SIGDAT, a Special Interest Group of the ACL
(2002)
Webqual: A measure of website quality
Christian Kohlschütter, Péter Fankhauser, W. Nejdl (2010)
Boilerplate detection using shallow text features
Kanthashree Sathyendra, Shomir Wilson, F. Schaub, Sebastian Zimmeck, N. Sadeh (2017)
Identifying the Provision of Choices in Privacy Policy Text
AbstractThe EU General Data Protection Regulation (GDPR) is one of the most demanding and comprehensive privacy regulations of all time. A year after it went into effect, we study its impact on the landscape of privacy policies online. We conduct the first longitudinal, in-depth, and at-scale assessment of privacy policies before and after the GDPR. We gauge the complete consumption cycle of these policies, from the first user impressions until the compliance assessment. We create a diverse corpus of two sets of 6,278 unique English-language privacy policies from inside and outside the EU, covering their pre-GDPR and the post-GDPR versions. The results of our tests and analyses suggest that the GDPR has been a catalyst for a major overhaul of the privacy policies inside and outside the EU. This overhaul of the policies, manifesting in extensive textual changes, especially for the EU-based websites, comes at mixed benefits to the users.While the privacy policies have become considerably longer, our user study with 470 participants on Amazon MTurk indicates a significant improvement in the visual representation of privacy policies from the users’ perspective for the EU websites. We further develop a new workflow for the automated assessment of requirements in privacy policies. Using this workflow, we show that privacy policies cover more data practices and are more consistent with seven compliance requirements post the GDPR. We also assess how transparent the organizations are with their privacy practices by performing specificity analysis. In this analysis, we find evidence for positive changes triggered by the GDPR, with the specificity level improving on average. Still, we find the landscape of privacy policies to be in a transitional phase; many policies still do not meet several key GDPR requirements or their improved coverage comes with reduced specificity.
Proceedings on Privacy Enhancing Technologies – de Gruyter
Published: Jan 1, 2020
Read and print from thousands of top scholarly journals.
Already have an account? Log in
Bookmark this article. You can see your Bookmarks on your DeepDyve Library.
To save an article, log in first, or sign up for a DeepDyve account if you don’t already have one.
Copy and paste the desired citation format or use the link below to download a file formatted for EndNote
Access the full text.
Sign up today, get DeepDyve free for 14 days.
All DeepDyve websites use cookies to improve your online experience. They were placed on your computer when you launched this website. You can change your cookie settings through your browser.