Reading all the privacy policies you "agree" to would take a month per year

Discuss

15 Responses to “Reading all the privacy policies you "agree" to would take a month per year”

  1. CastanhasDoPara says:

    TL;DR

  2. MiG says:

    Woah, and that’s even without weekends off!  

  3. angusm says:

    Many privacy policies (and EULAs) that we encounter are effectively identical. There’s definitely a case for someone working up a small set of ‘standard’ privacy policies and EULAs that would fit the majority of cases. Ideally, the ‘standard’ policies should be intuitively reasonable and respect the rights of users. Websites/software vendors could then simply display a badge that clearly indicates which policy is in force, so that users can know at a glance what the rules and their rights are.

    Creative Commons provides a good model: there’s a small set of variants, clearly identified by name, the rules are intuitive and fair, and the legalese is summarized in easy-to-understand language.

    “Off-the-shelf’ policies would save website owners/software producers time because they don’t need to draft their own. They’d be helpful to users because the badges would tell them what to expect simply and efficiently. And when a website owner/software producer felt that the standard policy didn’t fit their requirements and they needed to shoehorn in a few extra clauses, that would signal users that they need to pay a bit more attention and find out what exactly is different about this policy.

    • CastanhasDoPara says:

      Your system assumes that these policies/EULAs are meant to be fair and consistent to the end user. Generally they are not. The intentional legal obfuscation is the means these companies use to sneak in little (and big) digs at the users and to keep them all on their toes (or flat on their asses in the likely event that they didn’t read it and now find themselves on the short end of the stick.)

      However, I do like your approach. It’s simple, easy and would work. Unfortunately that is exactly why none of these EULAs will be replaced with a sensible system such as the one you propose.

      • angusm says:

        You’re probably right, although I think that if the policies were well-designed you might find quite a lot of take up among businesses that aren’t looking to shaft the consumer.

        The goal, of course, is to get wide enough adoption that when a company isn’t able/willing to use a standard policy, it’s unusual and causes users to ask exactly why Company X didn’t feel that the policy fit their needs.

        I suspect that privacy policies and terms of service might be an easier sell than EULAs, which is where the lawyers really like to lay land-mines.

        “The large print giveth, and the small print taketh away!” ["Step Right Up", Tom Waits]

    • Paul Renault says:

      Helen Nissenbaum (whose paper “Privacy as Contextual Integrity” I keep telling people to read (free to D/L, BTW)) argues that the idea that there are default sets of expectations which cover everyday interactions, needs to be extended to the online world.

      When you’re talking quietly to a friend on a street, you don’t expect that advertisers will get a hold of that conversation so that you can be targeted for,  say, chemotherapy.  Likewise on land-line telephones – you expect that the police, and even the phone company, need a warrant to listen in.

      This should also apply to, what you post on Facebook, your Google searches, your email.  Rather than having a plethora of varying and changed-without-notice privacy agreements, one for each company, there needs to be laws which provide privacy, er, characteristic specific to the context (posting on Facebook, sending email, talking on the phone, talking to your lawyer…).

  4. This is frightening and disheartening. Think also of the myriad tiny disclaimers and voluminous instructions that are printed on every food and prescription drug container we buy. If I took the time to read every box of cereal and jug of milk in my kitchen I might be there days  : )

    • Amelia_G says:

       Translators can make a pretty good living off those disclaimers and instructions, one reason why companies have been trying to rationalize those into identical, re-usable, machine-translateable text elements as well.

  5. David Mohring says:

    I would like to see a similar study on reading End User Licence Agreements on commonly used software products and services.

  6. The Devil hides contracts for your soul in EULAs. Countless people have sold their souls for the privilege of using crappy software.

  7. oasisob1 says:

    Ignoring them takes just a second.

  8. Will Hirsch says:

    My favourite is EULAs with a checkbox saying not only have you read it but you’ve understood it. Unless it’s software for qualified lawyers, I’d like to think that this makes the EULA completely unenforcable.

  9. Kimmo says:

    Yet another example of a priveleged minority screwing the rest of us over.

    No, I don’t fucking agree to your bullshit EULA, largely because it was composed by arseholes who apparently regard End Users as the enemy, but I’m going to tick your stupid checkbox anyway, because I have no other option if I want to use the software.

    I reckon pirate hackers should start replacing EULAs with parodies when they crack apps…

  10. Amelia_G says:

    A few years ago Eddie Izzard said EULA’s make liars out of all adults.

Leave a Reply