Type of Final Thesis:
Supervisor: Tobias Dehling, Ali Sunyaev
Research Group: Critical Information Infrastructures
Archive Number: 4.239
Status of Thesis: Completed
Date of start: 2019-12-13
Date of submission: 2020-07-02
Abstract: Nowadays information system environments are characterized by increasing information inter-connectedness and complexity. It is often difficult for users to determine how much of their data may be collected and how it might be used. For them, it is also nearly impossible to fully assess what privacy vulnerabilities they might expose themselves to, if they decide to interact with a given information system. Accordingly, more and more information privacy tools are available to meet user preferences. But the tools still have room for improvements. For example, often users ignore notices about information privacy policies as they are too long and complex to read. Since users do not read them, their expectations regarding data practices do not match actual data practices. The conse-quential mismatches between information privacy practices and up-to-date users’ expectations may result in users exposing themselves to unanticipated information privacy risks. Consequently, this work aims to capture the up-to-date users' expectations and experiences re-garding the information privacy tools through constructive interviews. Based on this, starting points - in the form of improvement approaches and deficits - will be identified for generating user problem–oriented and information privacy–enhancing design recommendations. Finally, by doing this the users should be able to make effective information privacy decisions.