Privacy notices are often long, difficult to understand and don’t appear at opportune times. Constrained interfaces on mobile devices, wearables, and smart home devices exacerbate the issue. Dr. Cranor will discuss the need for notice and consent and the problems with providing it in an IoT world. She will present a taxonomy of notice options based on her research. She will also describe ways machine-readable notices can work with personal privacy assistants to reduce user burden. Finally, she will discuss the importance of evaluating the effectiveness of notices in the context in which they are used and present privacy notice evaluation studies conducted by her students.

Bio:

Lorrie Faith Cranor joined the US Federal Trade Commission as Chief Technologist in January 2016. She is on leave from Carnegie Mellon University where she is a Professor of Computer Science and of Engineering and Public Policy, Director of the CyLab Usable Privacy and Security Laboratory (CUPS), and Co-director of the MSIT-Privacy Engineering masters program. She also co-founded Wombat Security Technologies, an information security awareness training company. Cranor has authored over 150 research papers on online privacy and usable security, and has played a central role in establishing the usable privacy and security research community, including her founding of the Symposium on Usable Privacy and Security.