Making context the central concept in privacy engineering
Abstract There is a gap between people’s online sharing of personal data and their concerns about privacy. Till now, this gap is addressed by attempting to match individual privacy preferences with service providers’ options for data handling. This approach has ignored the role different contexts pl...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
The Asia-Pacific Society for Computers in Education (APSCE)
2020-10-01
|
| Series: | Research and Practice in Technology Enhanced Learning |
| Subjects: | |
| Online Access: | http://link.springer.com/article/10.1186/s41039-020-00141-9 |
| _version_ | 1797763008417497088 |
|---|---|
| author | Tore Hoel Weiqin Chen Jan M. Pawlowski |
| author_facet | Tore Hoel Weiqin Chen Jan M. Pawlowski |
| author_sort | Tore Hoel |
| collection | DOAJ |
| description | Abstract There is a gap between people’s online sharing of personal data and their concerns about privacy. Till now, this gap is addressed by attempting to match individual privacy preferences with service providers’ options for data handling. This approach has ignored the role different contexts play in data sharing. This paper aims at giving privacy engineering a new direction putting context centre stage and exploiting the affordances of machine learning in handling contexts and negotiating data sharing policies. This research is explorative and conceptual, representing the first development cycle of a design science research project in privacy engineering. The paper offers a concise understanding of data privacy as a foundation for design extending the seminal contextual integrity theory of Helen Nissenbaum. This theory started out as a normative theory describing the moral appropriateness of data transfers. In our work, the contextual integrity model is extended to a socio-technical theory that could have practical impact in the era of artificial intelligence. New conceptual constructs such as ‘context trigger’, ‘data sharing policy’ and ‘data sharing smart contract’ are defined, and their application is discussed from an organisational and technical level. The constructs and design are validated through expert interviews; contributions to design science research are discussed, and the paper concludes with presenting a framework for further privacy engineering development cycles. |
| first_indexed | 2024-03-12T19:35:26Z |
| format | Article |
| id | doaj.art-6221d37ce3144b94b230c185d46427df |
| institution | Directory Open Access Journal |
| issn | 1793-7078 |
| language | English |
| last_indexed | 2024-03-12T19:35:26Z |
| publishDate | 2020-10-01 |
| publisher | The Asia-Pacific Society for Computers in Education (APSCE) |
| record_format | Article |
| series | Research and Practice in Technology Enhanced Learning |
| spelling | doaj.art-6221d37ce3144b94b230c185d46427df2023-08-02T04:11:29ZengThe Asia-Pacific Society for Computers in Education (APSCE)Research and Practice in Technology Enhanced Learning1793-70782020-10-0115112610.1186/s41039-020-00141-9Making context the central concept in privacy engineeringTore Hoel0Weiqin Chen1Jan M. Pawlowski2Oslo Metropolitan UniversityOslo Metropolitan UniversityHRW University of Applied SciencesAbstract There is a gap between people’s online sharing of personal data and their concerns about privacy. Till now, this gap is addressed by attempting to match individual privacy preferences with service providers’ options for data handling. This approach has ignored the role different contexts play in data sharing. This paper aims at giving privacy engineering a new direction putting context centre stage and exploiting the affordances of machine learning in handling contexts and negotiating data sharing policies. This research is explorative and conceptual, representing the first development cycle of a design science research project in privacy engineering. The paper offers a concise understanding of data privacy as a foundation for design extending the seminal contextual integrity theory of Helen Nissenbaum. This theory started out as a normative theory describing the moral appropriateness of data transfers. In our work, the contextual integrity model is extended to a socio-technical theory that could have practical impact in the era of artificial intelligence. New conceptual constructs such as ‘context trigger’, ‘data sharing policy’ and ‘data sharing smart contract’ are defined, and their application is discussed from an organisational and technical level. The constructs and design are validated through expert interviews; contributions to design science research are discussed, and the paper concludes with presenting a framework for further privacy engineering development cycles.http://link.springer.com/article/10.1186/s41039-020-00141-9Privacy engineeringContextual integrityContextContext triggerPersonal dataOnline data sharing |
| spellingShingle | Tore Hoel Weiqin Chen Jan M. Pawlowski Making context the central concept in privacy engineering Research and Practice in Technology Enhanced Learning Privacy engineering Contextual integrity Context Context trigger Personal data Online data sharing |
| title | Making context the central concept in privacy engineering |
| title_full | Making context the central concept in privacy engineering |
| title_fullStr | Making context the central concept in privacy engineering |
| title_full_unstemmed | Making context the central concept in privacy engineering |
| title_short | Making context the central concept in privacy engineering |
| title_sort | making context the central concept in privacy engineering |
| topic | Privacy engineering Contextual integrity Context Context trigger Personal data Online data sharing |
| url | http://link.springer.com/article/10.1186/s41039-020-00141-9 |
| work_keys_str_mv | AT torehoel makingcontextthecentralconceptinprivacyengineering AT weiqinchen makingcontextthecentralconceptinprivacyengineering AT janmpawlowski makingcontextthecentralconceptinprivacyengineering |