I just posted up a conference paper I wrote last year for the SOUPS conference on usable privacy and security.
It’s called “User-Centered Privacy Communication Design.” It was published in Proceedings of the Symposium on Usable Privacy and Security (SOUPS) 2016, Denver, Colorado, June 22-24, 2016.
The abstract:
In this paper, we describe a user-centered privacy policy design project that we undertook at Stanford Legal Design Lab, in order to generate new models of business-to-consumer communications around data privacy. From our preliminary user research, rapid prototyping and testing, and refinement of new privacy communication designs, focused on a very particular archetype – a 20-40 year old who is tech-savvy yet largely disinterested in privacy policies — we propose a series of new concept designs for technology companies to use when presenting the terms of their privacy policies, as well as general principles to ensure that communication of these policies are more engaging and actionable to this type of target user.
Please download, read, and enjoy!