A new program shows how your personal information is being treated when you are on the web. The program was developed by Aalborg University (AAU) researchers to make clear just how much information we are sharing about ourselves.
The web tool PPET is here to change that. By visualising different websites’ privacy policies the application creates an instant awareness of how your personal information is being treated by the service provider.
The look of privacy lost
By rolling the mouse over a donut chart, the user gets an overview of the site’s policies in several categories. Each category contains a summary with bullet points that makes it easy to quickly browse through the policy and see exactly what you have agreed to.
Giving it all away
The purpose of the PPET is not only to get users to read and understand the privacy policies, but also to empower us to get a better bargain before signing off our valuable private information.
With the PPET it is possible to see exactly how much personal information you have agreed to give away in exchange for whatever service the website provides. And chances are that it is way too much.
“It is a common saying on the Internet that if you are not paying for a product then you are the product,” says Prashant Shantaram Dhotre. “Of course, nothing is free, but the balance is completely tipped. Why would you give information like your personal address, company address, religion, browser search history and so on to a website that sells tickets? It doesn’t make any sense – unless you are getting a better deal that way. And you don’t at the moment, because you are unaware of what is going on.”
Standards are needed
When using the PPET, it quickly becomes apparent that privacy policies vary in the extreme and often do not comply with policy design guidelines. If anything, this only makes the entire area even more chaotic and hazy.
The researchers behind the PPET suggest that all service providers should use a standardised template for privacy policies – preferably one that is aligned with the upcoming European data protection act.
Later this year, the EU will enforce the General Data Protection Regulation (GDPR) – a law designed to protect the personal data of individuals inside the European Union. The law gives users the right to prevent their personal data being processed for direct marketing, to have inaccurate data rectified or destroyed and to claim compensation for damages caused by breach of the law.
The PPET is currently being tested at the Sinhgad Institute in Pune, India where it is being used by 600 students, but Dhotre, Olesen and Khajuria will be developing the PPET further and make it available for international download for everyone as a Firefox add-on by June 2018. This will be implemented with the help of student alumni Anurag Bihani, Sinhagad Institute.
Prashant Shantaram Dhotre, Ph.D., Center for Communication, Media and Information Technologies at Aalborg University Copenhagen, firstname.lastname@example.org, +91 97 6372 2187
Henning Olesen, associate professor, Center for Communication, Media and Information Technologies at Aalborg University Copenhagen, email@example.com, + 45 9940 2516
Nelly Sander, press contact AAU, firstname.lastname@example.org, +45 9940 2018