PriPoCoG: Empowering End-Users’ Data Protection Decisions

Jens Leicht; Julien Lukasewycz; Maritta Heisel

doi:10.5220/0013478000003929

PriPoCoG: Empowering End-Users’ Data Protection Decisions

Jens Leicht, Julien Lukasewycz, Maritta Heisel

2025

Abstract

The General Data Protection Regulation (GDPR) demands data controllers to provide transparent information about data processing to data subjects. This information is mostly provided in the form of textual privacy policies. These policies have many disadvantages, such as their inconsistent structure and terminology, their large scope, and their high complexity. For this reason, data subjects are likely to accept the agreement even if they do not fully agree with the data processing contained in it; this phenomenon is known as the privacy paradox. To overcome these disadvantages, we propose a user interface based on the results from a thorough literature review and a group interview. By not relying on a completely textual approach, we reduce the mental effort required from data subjects and increase transparency. We utilize the Prolog - Layered Privacy Language (P-LPL), which allows data subjects to customize privacy policies. Our work extends the compliance checks of P-LPL with compatibility checks for customized privacy policies. The proposed interface provides graphical representations for privacy policies, aligning with different mental models of data subjects. We provide a prototype to demonstrate the proposed theoretical concepts.

Download

Paper Citation

in Harvard Style

Leicht J., Lukasewycz J. and Heisel M. (2025). PriPoCoG: Empowering End-Users’ Data Protection Decisions. In Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS; ISBN 978-989-758-749-8, SciTePress, pages 668-679. DOI: 10.5220/0013478000003929

in Bibtex Style

@conference{iceis25,
author={Jens Leicht and Julien Lukasewycz and Maritta Heisel},
title={PriPoCoG: Empowering End-Users’ Data Protection Decisions},
booktitle={Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS},
year={2025},
pages={668-679},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013478000003929},
isbn={978-989-758-749-8},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS
TI - PriPoCoG: Empowering End-Users’ Data Protection Decisions
SN - 978-989-758-749-8
AU - Leicht J.
AU - Lukasewycz J.
AU - Heisel M.
PY - 2025
SP - 668
EP - 679
DO - 10.5220/0013478000003929
PB - SciTePress