Abstract

http://ssrn.com/abstract=2070401
 


 



Bridging the Gap between Privacy and Design


Deirdre K. Mulligan


University of California, Berkeley - School of Information

Jennifer King


University of California, Berkeley - School of Information

April 2012

University of Pennsylvania Journal of Constitutional Law, Vol. 14, No. 4, 2012

Abstract:     
This article explores the gap between privacy and design in the context of “lateral privacy”— privacy issues arising among users of a service rather than from the service provider — on social networking sites (SNSs) and other platforms by analyzing the privacy concerns lodged against the introduction of Facebook’s News Feed in 2006. Our analysis reveals that the dominant theory of privacy put forth by regulators, privacy as individual control, offers little insight into the experiences of privacy violation claimed by users. More importantly, we show that this theory is ill equipped to guide the design of SNSs and platforms to avoid similar harms in the future. A rising tide of privacy blunders on social networking sites and platforms drives the search for new regulatory approaches, and privacy regulators across the globe are increasingly demanding that the Fair Information Practice Principles, the embodiment of privacy as individual control, inform the design of technical systems through Privacy By Design. The call for Privacy By Design — the practice of embedding privacy protections into products and services at the design phase, rather than after the fact — connects to growing policymaker recognition of the power of technology to not only implement, but also to settle policy through architecture, configuration, interfaces, and default settings. We argue that regulators would do well to ensure that the concept of privacy they direct companies to embed affords the desirable forms of protection for privacy.

Ideally, there would be a widely used set of methods and tools to aid in translating privacy into design. Today, neither is true. We identify three gaps in the “informational self-determination” approach that limit its responsiveness to lateral privacy design decisions in SNSs and platforms and then explore three alternative theories of privacy that provide compelling explanations of the privacy harms exemplified in platform environments. Based on this descriptive utility, we argue that these theories provide more robust grounding for efforts by SNSs and platform developers to address lateral privacy concerns in the design of technical artifacts. Unlike FIPPs, which can be applied across contexts, these theories require privacy to be discovered, not just implemented. To bridge this discovery gap, we turn to the field of Human Computer Interaction (“HCI”) and dip into the related field of Value Sensitive Design (“VSD”) to identify tools and methodologies that would aid designers in discovering and ultimately embedding these contextual, socially-oriented understandings of privacy in technical artifacts. Finally, we provide some tentative thoughts on the form and substance of regulations that would prompt corporations to invest in these HCI approaches to privacy.

Number of Pages in PDF File: 46

Accepted Paper Series


Download This Paper

Date posted: May 29, 2012  

Suggested Citation

Mulligan, Deirdre K. and King, Jennifer, Bridging the Gap between Privacy and Design (April 2012). University of Pennsylvania Journal of Constitutional Law, Vol. 14, No. 4, 2012. Available at SSRN: http://ssrn.com/abstract=2070401

Contact Information

Deirdre K. Mulligan (Contact Author)
University of California, Berkeley - School of Information ( email )
102 South Hall
Berkeley, CA 94720-4600
United States
Jennifer King
University of California, Berkeley - School of Information ( email )
102 South Hall
Berkeley, CA 94720
United States
Feedback to SSRN


Paper statistics
Abstract Views: 2,134
Downloads: 365
Download Rank: 45,015

© 2014 Social Science Electronic Publishing, Inc. All Rights Reserved.  FAQ   Terms of Use   Privacy Policy   Copyright   Contact Us
This page was processed by apollo8 in 0.219 seconds