{"title":"GDPR和云:检查云计算提供商隐私政策的可读性缺陷","authors":"Lei Gao, C. Eller, Austin F. Eggers","doi":"10.1080/01442872.2022.2129046","DOIUrl":null,"url":null,"abstract":"ABSTRACT There have been concerns about data privacy and protection internationally. This has led to the development of policy tools, such as the General Data Protection Regulations (GDPR), but there remains limited evaluation of the effectiveness of the policies. The purpose of this study is to examine cloud computing privacy policies in order to determine how they changed in response to GDPR. Specifically, we focus on the EU’s mandate for “clear and plain language” by scrutinizing various content characteristics. In order to examine the response to the changes enacted by GDPR, we conduct a content analysis of cloud computing firm privacy policies from three periods. Results indicate that despite a mandate for “clear and plain language,” the readability of the privacy policies post-GDPR did not improve. Surprisingly, many privacy policies examined showed a significant decrease in readability. Additionally, the use of uncertainty language and litigious language also increased in certain areas. The findings outlined in this study are informative for policy makers, businesses interested in minimizing risks associated with GDPR noncompliance, and individuals whose data is subject to GDPR. These findings also point to the challenges faced by organizations in developing effective policies in the realm of digital governance.","PeriodicalId":47179,"journal":{"name":"Policy Studies","volume":"3 1","pages":"832 - 854"},"PeriodicalIF":2.2000,"publicationDate":"2022-10-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"GDPR and the cloud: examining readability deficiencies in cloud computing providers’ privacy policies\",\"authors\":\"Lei Gao, C. Eller, Austin F. Eggers\",\"doi\":\"10.1080/01442872.2022.2129046\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"ABSTRACT There have been concerns about data privacy and protection internationally. This has led to the development of policy tools, such as the General Data Protection Regulations (GDPR), but there remains limited evaluation of the effectiveness of the policies. The purpose of this study is to examine cloud computing privacy policies in order to determine how they changed in response to GDPR. Specifically, we focus on the EU’s mandate for “clear and plain language” by scrutinizing various content characteristics. In order to examine the response to the changes enacted by GDPR, we conduct a content analysis of cloud computing firm privacy policies from three periods. Results indicate that despite a mandate for “clear and plain language,” the readability of the privacy policies post-GDPR did not improve. Surprisingly, many privacy policies examined showed a significant decrease in readability. Additionally, the use of uncertainty language and litigious language also increased in certain areas. The findings outlined in this study are informative for policy makers, businesses interested in minimizing risks associated with GDPR noncompliance, and individuals whose data is subject to GDPR. These findings also point to the challenges faced by organizations in developing effective policies in the realm of digital governance.\",\"PeriodicalId\":47179,\"journal\":{\"name\":\"Policy Studies\",\"volume\":\"3 1\",\"pages\":\"832 - 854\"},\"PeriodicalIF\":2.2000,\"publicationDate\":\"2022-10-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Policy Studies\",\"FirstCategoryId\":\"91\",\"ListUrlMain\":\"https://doi.org/10.1080/01442872.2022.2129046\",\"RegionNum\":4,\"RegionCategory\":\"管理学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"PUBLIC ADMINISTRATION\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Policy Studies","FirstCategoryId":"91","ListUrlMain":"https://doi.org/10.1080/01442872.2022.2129046","RegionNum":4,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"PUBLIC ADMINISTRATION","Score":null,"Total":0}
GDPR and the cloud: examining readability deficiencies in cloud computing providers’ privacy policies
ABSTRACT There have been concerns about data privacy and protection internationally. This has led to the development of policy tools, such as the General Data Protection Regulations (GDPR), but there remains limited evaluation of the effectiveness of the policies. The purpose of this study is to examine cloud computing privacy policies in order to determine how they changed in response to GDPR. Specifically, we focus on the EU’s mandate for “clear and plain language” by scrutinizing various content characteristics. In order to examine the response to the changes enacted by GDPR, we conduct a content analysis of cloud computing firm privacy policies from three periods. Results indicate that despite a mandate for “clear and plain language,” the readability of the privacy policies post-GDPR did not improve. Surprisingly, many privacy policies examined showed a significant decrease in readability. Additionally, the use of uncertainty language and litigious language also increased in certain areas. The findings outlined in this study are informative for policy makers, businesses interested in minimizing risks associated with GDPR noncompliance, and individuals whose data is subject to GDPR. These findings also point to the challenges faced by organizations in developing effective policies in the realm of digital governance.
期刊介绍:
These changes at the structural level of the global system have impacted upon the work of public organizations either directly or indirectly and have broadened the field of action in policy studies. It has five main areas of intellectual interest: 1.To broaden the lens of policy analysis through the publication of research which locates policy-making within a theoretical, historical or comparative perspective. 2.To widen the field of enquiry in policy analysis through the publication of research that examines policy issues in a British, comparative, international or global context. 3.To promote constructive debate on theoretical, methodological and empirical issues in policy analysis.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
