Interdisciplinary Research Group in Socio-technical Cybersecurity
Can Visual Design Provide Legal Transparency? The Challenges for Successful Implementation of Icons for Data Protection
Design is a key player in the future of data privacy and data protection. The General Data Protection Regulation (GDPR) established by the European Union aims to rebalance the information asymmetry between the organizations that process personal data and the individuals to which that data refers. Machine-readable, standardized icons that present a “meaningful overview of the intended processing” are suggested by the law as a tool to enhance the transparency of information addressed to data subjects. However, no specific guidelines have been provided, and studies on privacy iconography are very few. This article describes research conducted on the creation and evaluation of icons representing data protection concepts. First, we introduce the methodology used to design the Data Protection Icon Set (DaPIS): participatory design methods combined with legal ontologies and machine-readable representations. Second, we discuss some of the challenges that have been faced in the development and evaluation of DaPIS and similar icon sets. Third, we provide some tentative responses and indicate a way forward for evaluation of the effectiveness of privacy icons and their widespread adoption.
Rossi Arianna, Palmirani Monica
Massachusetts Institute of Technology
A. Rossi and M. Palmirani, "Can Visual Design Provide Legal Transparency? The Challenges for Successful Implementation of Icons for Data Protection," in Design Issues, vol. 36, no. 3, pp. 82-96, June 2020, doi: 10.1162/desi_a_00605.
Get in touch with us
SnT – Interdisciplinary Centre for Security, Reliability and Trust
Maison du Nombre, 6, avenue de la Fonte L-4364 Esch-sur-Alzette