This paper from Carnegie Mellon University’s CyLab by Patrick Gage Kelley, Lucian Cesca, Joanna Bresee and Lorrie Faith Cranor compares this standardized format and two short variants (one tabular, one text) with the current status quo of privacy notices: full text natural language policies and layered policies. The researchers conducted an online user study of 789 participants to test if these three more intentionally designed, standardized privacy policy formats, assisted by consumer education, can benefit consumers. Our results show that providing standardized privacy policy presentations can have significant positive effects on accuracy of information finding, overall speed and reader enjoyment with privacy policies. (Revised January 12, 2010).
Standardizing Privacy Notices: An Online Study of the Nutrition Label Approach
Related Stories
U.S. State Data Breach Lists
Last Updated: October 2021
Many U.S. state agencies publish lists of reported data breaches in their respective state. Below are links to the published lists. We welcome the assistance of IAPP members. If critical resources are missing or become available, please let us know at research@iapp.org....
eBook – Top 10 operational responses to the GDPR
Published: March 2018Click To Access
In 2016, the Westin Research Center published a series of articles identifying our analysis of the top 10 operational impacts of the EU General Data Protection Regulation. Now, with the May 25, 2018, GDPR-implementation deadline looming, the IAPP is releasing ...
Web Conference: Privacy Incident Management Simplified
Original broadcast date: 31 Jan. 2023
This web conference discusses the short- and long-term benefits of digital transformation and how embracing technology is a value-add to your privacy program....
Web Conference: Taking your EU GDPR program across the pond
Original broadcast date: 27 Jan. 2023
This web conference addresses how the GDPR has influenced the new U.S. state privacy laws in California, Colorado, Connecticut, Utah and Virginia....