Categories: informnotify

Preventing mistakes or reducing their impact

Contents

Context

Numerous services (or products) are designed with the purpose of sharing amongst the public or a specific subset of users. In content sharing implementations, it is commonplace to streamline disclosure so that users do not need to publish manually. Content they generate is often automatically shared with the controller, even if not immediately made available to other users or the public. This of course requires the prior consent of users, though it is also possible for users to forget about that consent, or change their mind. If the distinction lies in a simple setting, it may not be apparent to the user that it is still in effect.

Problem

Immediate and automatic content publication without notification or confirmation of consent leads to unintentional disclosure and may invalidate prior consent.

Forces and Concerns

  • Users of the service want to share content with others, but not all of the content they generate is fit for sharing
  • Most users do not want to manually upload content case by case, sometimes long after creation
  • Controllers want to make it easy for users to contribute content
  • Controllers do not want users to disclose content which they regret disclosing and potentially ruins the user's experience

Solution

Use contextual measures to predict whether content should be processed, re-establishing consent, to prevent accidental disclosure.

[Implementation]

Through the study of patterns in disclosure behavior, systems may be able to helpfully warn users when disclosing following potentially significant change in context, perhaps reducing potential for mistakes. [These] privacy decisions are often correlated with the context of capture and the [content] as indicated [by the user. It] could be feasible to use these patterns for prediction or recommendation of privacy settings. In addition, providing an optional “staging area” before disclosure actually takes place and an easy way to review recent disclosures may reduce the immediate consequences of quickly regretted or accidental disclosure decisions.

Consequences

Clearing up mistakenly shared data adds additional overhead, especially if the service does not offer simple modification or removal of information. As sharing more than actually intended may result in potential damage for users, they will benefit from services which reduce these risks.

Examples

Through the study of [trends] in disclosure behavior, systems may be able to helpfully warn users when disclosing following potentially significant change in context, perhaps reducing potential for mistakes. As [Ahern et al.] found that privacy decisions are often correlated with the context of capture and the content of the photo as indicated by user-specified tags, it could be feasible to use these patterns for prediction or recommendation of privacy settings. In addition, providing an optional “staging area” before disclosure actually takes place and an easy way to review recent disclosures may reduce the immediate consequences of quickly regretted or accidental disclosure decisions.

This pattern complements Impactful Information and Feedback, and [Informed] Credential Selection. As such the patterns which refine it do so as well where their context permits. For Impactful Information and Feedback this is the case. It provides feedback about disclosure under certain privacy settings before it takes place, and can be notified of, and reviewed, before causing an impact. [Informed] Credential Selection, however, can only reasonably complement Asynchronous Notice, as it deals with instant authentication. Modal notification like what this pattern might provide can inform users in a timely manner.

It is also refined by both Ambient Notice and Asynchronous Notice. These variants of notice, which are themselves alternatives, both provide essentially equal problems for which they give more specific contexts and solutions. The former is unobtrusive and persistently informative, while the latter is unavoidably informative when context demands.

[Sources]

S. Ahern, D. Eckles, N. Good, S. King, M. Naaman, and R. Nair, “Over-Exposed ? Privacy Patterns and Considerations in Online and Mobile Photo Sharing,” CHI ’07, pp. 357–366, 2007.

C. Bier and E. Krempel, “Common Privacy Patterns in Video Surveillance and Smart Energy,” in ICCCT-2012, 2012, pp. 610–615.