English
Related papers

Related papers: Multiple Purposes, Multiple Problems: A User Study…

200 papers

Since the adoption of the General Data Protection Regulation (GDPR) in May 2018 more than 60 % of popular websites in Europe display cookie consent notices to their visitors. This has quickly led to users becoming fatigued with privacy…

Human-Computer Interaction · Computer Science 2019-10-23 Christine Utz , Martin Degeling , Sascha Fahl , Florian Schaub , Thorsten Holz

While companies increasingly rely on data, especially when it comes to targeted advertising, adapting content to users, selling data and training machine learning models, the collection of data raises privacy concerns. One way of collecting…

Human-Computer Interaction · Computer Science 2026-05-15 Liv Hilde Sjøflot , Tobias A. Opsahl

The recently introduced General Data Protection Regulation (GDPR) requires that when obtaining information online that could be used to identify individuals, their consents must be obtained. Among other things, this affects many common…

Cryptography and Security · Computer Science 2019-05-06 Xuehui Hu , Nishanth Sastry

Consent dialogues are a source of annoyance, malicious intent, dark patterns, illegal practices and a plethora of other issues. This work presents known problems based on GDPR requirements grouped into two categories: (i) UI/UX for…

Computers and Society · Computer Science 2022-08-12 Harshvardhan J. Pandit

In our data-centric world, most services rely on collecting and using personal data. The EU's General Data Protection Regulation (GDPR) aims to enhance individuals' control over their data, but its practical impact is not well understood.…

Human-Computer Interaction · Computer Science 2022-03-11 Alex Bowyer , Jack Holt , Josephine Go Jefferies , Rob Wilson , David Kirk , Jan David Smeddinck

New consent management platforms (CMPs) have been introduced to the web to conform with the EU's General Data Protection Regulation, particularly its requirements for consent when companies collect and process users' personal data. This…

Human-Computer Interaction · Computer Science 2020-01-09 Midas Nouwens , Ilaria Liccardi , Michael Veale , David Karger , Lalana Kagal

During the past few years, mostly as a result of the GDPR and the CCPA, websites have started to present users with cookie consent banners. These banners are web forms where the users can state their preference and declare which cookies…

Computers and Society · Computer Science 2022-02-11 Emmanouil Papadogiannakis , Panagiotis Papadopoulos , Nicolas Kourtellis , Evangelos P. Markatos

Data collection purposes and their descriptions are presented on almost all privacy notices under the GDPR, yet there is a lack of research focusing on how effective they are at informing users about data practices. We fill this gap by…

Human-Computer Interaction · Computer Science 2024-02-07 Lin Kyi , Abraham Mhaidli , Cristiana Santos , Franziska Roesner , Asia Biega

In response to growing concerns about user privacy, legislators have introduced new regulations and laws such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) that force websites to obtain user…

Computers and Society · Computer Science 2024-03-01 Nikhil Jha , Martino Trevisan , Marco Mellia , Daniel Fernandez , Rodrigo Irarrazaval

To ensure that users of online services understand what data are collected and how they are used in algorithmic decision-making, the European Union's General Data Protection Regulation (GDPR) specifies informed consent as a minimal…

Human-Computer Interaction · Computer Science 2020-06-26 Than Htut Soe , Oda Elise Nordberg , Frode Guribye , Marija Slavkovik

The European Union's General Data Protection Regulation (GDPR) went into effect on May 25, 2018. Its privacy regulations apply to any service and company collecting or processing personal data in Europe. Many companies had to adjust their…

Computers and Society · Computer Science 2019-06-26 Martin Degeling , Christine Utz , Christopher Lentzsch , Henry Hosseini , Florian Schaub , Thorsten Holz

The California Consumer Privacy Act (CCPA) secures the right to Opt-Out for consumers in California. However, websites may implement complex consent mechanisms that potentially do not capture the user's true choices. We investigated the…

Cryptography and Security · Computer Science 2023-09-06 Torsha Mazumdar , Daniel Timko , Muhammad Lutfor Rahman

A cookie banner pops up when a user visits a website for the first time, requesting consent to the use of cookies and other trackers for a variety of purposes. Unlike prior work that has focused on evaluating the user interface (UI) design…

Human-Computer Interaction · Computer Science 2021-10-08 Cristiana Santos , Arianna Rossi , Lorena Sánchez Chamorro , Kerstin Bongard-Blanchy , Ruba Abu-Salma

The GDPR requires websites to facilitate the right to revoke consent from Web users. While numerous studies measured compliance of consent with the various consent requirements, no prior work has studied consent revocation on the Web.…

Cryptography and Security · Computer Science 2025-05-26 Gayatri Priyadarsini Kancherla , Nataliia Bielova , Cristiana Santos , Abhishek Bichhawat

The European General Data Protection Regulation (GDPR), which went into effect in May 2018, leads to important changes in this area: companies are now required to ask for users' consent before collecting and sharing personal data and by law…

Cryptography and Security · Computer Science 2021-10-22 Tobias Urban , Dennis Tatang , Martin Degeling , Thorsten Holz , Norbert Pohlmann

Dark patterns are (evil) design nudges that steer people's behaviour through persuasive interface design. Increasingly found in cookie consent requests, they possibly undermine principles of EU privacy law. In two preregistered online…

Computers and Society · Computer Science 2025-09-24 Paul Graßl , Hanna Schraffenberger , Frederik Zuiderveen Borgesius , Moniek Buijzen

Data protection regulations, such as GDPR and CCPA, require websites and embedded third-parties, especially advertisers, to seek user consent before they can collect and process user data. Only when the users opt in, can these entities…

Cryptography and Security · Computer Science 2025-11-04 Zengrui Liu , Umar Iqbal , Nitesh Saxena

We need to rethink our approach to defend privacy on the internet. Currently, policymakers focus heavily on the idea of informed consent as a means to defend privacy. For instance, in many countries the law requires firms to obtain an…

Computers and Society · Computer Science 2025-12-08 Frederik Zuiderveen Borgesius

Privacy policies govern how personal data is collected, used, and shared. Yet, in most privacy-policy consent flows, agreement is operationalized as a single click at the end of a long, opaque policy document. Recent privacy-law scholarship…

Human-Computer Interaction · Computer Science 2026-04-28 Qian Ma , Aditya Majumdar , Sarah Rajtmajer , Brett Frischmann

The EU General Data Protection Regulation (GDPR) is one of the most demanding and comprehensive privacy regulations of all time. A year after it went into effect, we study its impact on the landscape of privacy policies online. We conduct…

Cryptography and Security · Computer Science 2019-06-26 Thomas Linden , Rishabh Khandelwal , Hamza Harkous , Kassem Fawaz
‹ Prev 1 2 3 10 Next ›