Search results

Although personal information privacy concerns have been around for years, the introduction of E‐commerce and its associated technologies presents privacy concerns anew. The Fortune 500 represents traditional leadership in the use of technologies and business practices. This preliminary study examines Web sites of the Fortune 500 and shows that slightly more than 50 percent of Fortune 500 Web sites provide privacy policies on their home pages. Comprehensive privacy policies to address all privacy dimensions recommended by the FTC are less common.

During the period of growth of e‐commerce, e‐business and online life in general, trust has been identified by a number of authors as a key factor, the absence of which can act as a powerful disincentive to an individual’s engagement in a transaction. This has encouraged a great deal of research into the various facets of trust in an online environment, both theoretical and empirical. One of the many recommendations for business practice that have emerged from this research is the suggestion that online businesses should publish on their website a privacy policy that explains clearly the use that will be made of any personal information collected on the site, the third parties to whom it may be disclosed, and the circumstances under which disclosure may occur. A number of surveys have been conducted that highlight the rather patchy adoption of this recommendation in various countries. We now know, for example, that by no means all online organisations publish an online privacy policy, and that many of those that do exist display a range of serious shortcomings, including poor visibility on the site, incomplete coverage of the main issues of concern and poor readability. However, previous discussion of privacy policies has tended to assume that any particular policy can provide value to its readers by informing them of the privacy practices of its host organisation, and thus also to its publishers through encouraging customers and clients to trust them more than they otherwise would. This assumption is expected to be valid where the policy meets certain criteria, which are either established on the basis of theoretical considerations, or are derived from a kind of best‐in‐breed comparative exercise. This paper seeks to address the question how far privacy policies can ever achieve the goal of providing clear information to website visitors about the privacy practices of an organisation. It reports on an empirical study that was conducted between November 2005 and April 2006 using two groups of University students as subjects. The subjects were asked to read three privacy policies, selected in advance by the author, and to complete a short questionnaire on what the subject thought each policy had to say about certain key privacy issues. The results reveal that there is surprisingly little agreement about what a policy actually means. This has significant implications both for policy writers and their managers, and also for those who are considering entering into a transaction with the host website. There is a need for further research to investigate this question in more detail, but it is clear from these findings that we know less than we thought we did about the ways in which people interpret the notices that they read on websites.

Building on past studies of library privacy policies, this review looks at how privacy information is shared at universities and colleges in the state of Florida. Beyond the question of whether a library-specific privacy policy exists, this review evaluates what is covered in the policies – whether topics such as how student data is stored, retained, de-identified and disposed of are broached in the statements, and whether specific data sets covering instruction, reference and surveillance are mentioned. The purpose of this study is to open the door to directed exploration into student awareness of privacy policies and spark conversation about positionality of libraries regarding privacy.

This review was done using a cross-sectional study design through observation of public-facing library privacy policies of higher education institutions in Florida.

Findings include that the majority of Florida academic libraries do not have a public-facing privacy policy. Only 15 out of the 70 schools reviewed had one. A large portion of those came from doctoral universities with associate’s colleges having none, and baccalaureate/associate’s colleges having only two. The policies that were in place tended to be institution-centered rather than patron-centered. Most categories of listed data collected were in the area of collections, website or computer usage.

The value of this review is that it adds to the literature studying privacy policies in academic libraries. Going forward, this research could address statewide practice in privacy policies as well as helping to lay pathways for working with students and other library patrons to gauge their interests and concerns about privacy.

Privacy policies emerge as the main mechanism to inform users on the way their information is managed by online service providers, and still remain the dominant approach for this purpose. The literature notes that users find difficulties in understanding privacy policies because they are usually written in technical or legal language even, although most users are unfamiliar with them. These difficulties have led most users to skip reading privacy policies and blindly accept them. This study aims to address this challenge this paper presents AppAware, a multiplatform tool that intends to improve the visualization of privacy policies for mobile applications.

AppAware formulates a visualized report with the permission set of an application, which is easily understandable by a common user. AppAware aims to bridge the difficulty to read privacy policies and android’s obscure permission set with a new privacy policy visualization model. Thus, we propose AppAware parser, a mobile add-on that acts complementary with AppAware and helps mobile device users to monitor the applications they installed to their smart device.

To validate AppAware, the authors conducted a survey through questionnaire aiming to evaluate AppAware in terms of installability, usability and viability-purpose. The results demonstrate that AppAware is assessed above average by the users in all categories.

In the best of the authors’ knowledge, there is no such approach as AppAware as an application nor AppAware parser as add-on.

The widespread use of electronic mail (e‐mail) at work has prompted a growing number of companies to implement e‐mail policies to protect both business interests and the privacy of employees. However, very little is known about the effects of such policies on such outcomes for employees such as perceived invasiveness and fairness. Thus, the paper aims to consider these issues.

This paper uses a 2×2 experimental design and a sample of 592 employed internet users to examine the effects of e‐mail policy characteristics (i.e. policy restrictiveness and policy justification) on perceptions of invasion of privacy (invasiveness) and fairness.

Results indicate that policy restrictiveness has effects on both invasiveness and fairness, and that policy justification has an effect on fairness. In addition, privacy values are related to both invasiveness and fairness, and moderated the effect of policy restrictiveness on fairness.

Implications for practice and the integration of organizational justice and organizational privacy theory are discussed. In terms of practice, for example, the study's results have implications for the formulation and enforcement of policies concerning the use of e‐mail systems.

This paper is the first to consider the effects of e‐mail policies on employee reactions (i.e. fairness and invasiveness).

Despite grave public concerns over information privacy and ongoing academic explorations of privacy policy, there is a general lack of understanding toward this issue in the legal context in China, the largest e-commerce market in the world. Departing from the extant literature of general discussion in nature, the authors undertook an exploratory study on the efficacy of e-commerce websites' privacy policies in China from the legal perspective.

The authors drew on a qualitative grounded theory approach to identify selective codes relating to the focal issue and established a theoretical framework therefrom. The authors then conducted theoretical integration by linking them to the Theory of Development Blocks and the System Justification Theory.

The research identifies a general distrust of Chinese consumers toward privacy policies and highlights that despite their growing concerns about privacy, the privacy policies are largely ineffective in reflecting legal enforcement, changing their perceptions or influencing purchase behaviors. It also reveals that the current Chinese legislation is unable to fully render consumers' confidence in e-commerce websites' privacy policies effectiveness and privacy protection due to its limited recognition and influences among them.

The research has multiple ramifications. The authors empirically confirmed a mismatch between customers' perception of privacy policies and their actual behaviors and then theoretically explained the seemingly conflicting scenario in the context of development block of legal enforcement and system justification. The authors theorized the absence of the legal enforcement in privacy policies to supplement the legal perspective to the literature. The research further leads us to suggest that the time has come to update and strongly enforce privacy regulation in China to fuel the further development of e-commerce sector in practice.

Health information exchange (HIE) initiatives utilize sharing mechanisms through which health information is mostly transmitted without a patient's close supervision; thus, patient trust in the HIE is the core in this setting. Existing technology acceptance theories mainly consider cognitive beliefs resulting in adoption behavior. The study argues that existing theories should be expanded to cover not only cognitive beliefs but also the emotion provoked by the sharing nature of the technology. Based on the theory of reasoned action, the technology adoption literature, and the trust literature, we theoretically explain and empirically test the impact of perceived transparency of privacy policy on cognitive trust and emotional trust in HIEs. Moreover, the study analyzes the effects of cognitive trust and emotional trust on the intention to opt in to HIEs and willingness to disclose health information.

An online survey was conducted using data from individuals who were aware of HIEs through experience with at least one provider participating in an HIE network. Data were collected from a wide range of adult population groups in the United States.

The structural equation modeling analysis results provide empirical support for the proposed model. The model highlights the strategic role of the perceived transparency of the privacy policy in building trust in HIEs. When patients know more about HIE security measures, sharing procedures, and privacy terms, they feel more in control, more assured, and less at risk. The results also show that patient trust in HIEs may take the forms of intention to opt in to an HIE and willingness to disclose health information exchanged through HIE networks.

The findings of this study should be of interest to both academics and practitioners. The research highlights the importance of developing and using a transparent privacy policy in the diffusion of HIEs. The findings provide a deep understanding of dimensions of HIE privacy policy that should be addressed by health-care organizations to exchange personal health information in a secure and private manner.

The purpose of this paper is to propose visualization techniques as a new representation for privacy policies instead of traditional textual representation and to examine empirically their effects on users’ information privacy awareness level.

The authors selected as a case the privacy policy of Instagram and conducted two empirical investigations, each one with three interventions and each representing a different version of the Instagram privacy policy to users. Through a pre- and a post-questionnaire, the authors examined the effects that each representation technique had on the users’ privacy awareness level.

The paper finds that visualized privacy policies lead to higher privacy awareness levels than conventional textual ones, especially when icons are included.

The authors implemented two new representation techniques offering beneficial guidelines for designing more attractive privacy policy representations. However, the samples are rather limited for generalization to the wide population; nonetheless, they are significant to demonstrate the effect of visualized techniques. The findings might also be subject to bias (e.g. brand bias), although the authors took necessary methodological actions to prevent bias.

The results and the methodology of the paper could guide practitioners for the representation of a privacy policy, given that the authors provide systematic and concrete steps.

This paper examines the value of privacy policy visualization as a new approach for enabling user privacy awareness, as well as implements two visualization techniques for a given privacy policy. The paper and its findings should be useful for researchers, as well as for practitioners.

The purpose of this paper is to propose and empirically test a theoretical model that considers the predictors of an individual’s perceptions of information privacy, and also how it relates to his/her behavioral intention toward approaching hospital web sites.

This paper collects data using survey methodology. A total of 331 usable participants are gathered and analyzed via structural equation modeling.

Significant predictors of information privacy concerns include a stated online privacy policy and a hospital’s reputation. Further, online privacy policy predicts a hospital’s reputation. Finally, hospital reputation and information privacy concerns significantly predict an individual’s behavioral intention toward approaching hospital web sites.

The study confirmed that an online privacy policy and reputation can effectively alleviate specific information privacy concerns; therefore, this may indicate that these two factors should be considered whenever investigating individuals’ information privacy concerns.

To acquire a good reputation and to diminish individuals’ information privacy concerns toward hospital web sites, hospitals should pay attention to the posting of an online privacy policy and communicating such policies to given individuals.

This paper fulfils the gap of exploring the relationship among online privacy policy, organization reputation, and information privacy concerns. Further, the hypothesized model and its findings could also provide useful information for managers who are intent on boosting hospital web site usage frequency patterns.

Many authors have identified fears about a lack of personal privacy online as a major disincentive to the take‐up of e‐commerce by private consumers. The publication of a privacy policy is encouraged by information and communications technology industry groups such as the Online Privacy Alliance, and by online certification bodies such as TRUSTe. Privacy policies are taken to reassure the wary, and thereby to overcome the disincentive to trade. This paper offers an account of an ongoing research project into the practical measures taken by organisations to publish their online privacy policies. Late in 2000, a total of 113 disparate web sites were identified that included some kind of explicit privacy policy and the visibility and content of the policy was analysed. The primary research into privacy policies is set in context by relating it to a discussion of the nature and role of trustworthiness in online relationships. This highlights a number of issues that need further attention on the part of some of the organisations in the survey.