With the increasing awareness and concerns around privacy, many service providers offer their users various privacy controls. Through these controls, users gain greater authority over the collection, utilisation, and dissemination of their personal information by the services. However, these controls may be buried deep within menus or settings, making them difficult for a user to access. Additionally, the terminology used to describe privacy controls can sometimes be confusing or technical, further complicating the user's ability to understand and use them effectively. This is especially true for health websites, as users often share sensitive information about their health and well-being. While many privacy controls have been proposed to protect user data on these sites, existing research focuses on individual controls (e.g., privacy policies or cookie opt-outs) rather than providing a comprehensive overview of the privacy landscape. In addition, many studies concentrate on the technical aspects of privacy controls without considering the usability of these features from a user's perspective. This paper aims to fill the gaps in the existing work by analysing four privacy controls, namely privacy nudge, privacy notice, privacy policy, and privacy setting, and evaluating their usability on the top 100 most visited health websites. First, we define usability attributes for each privacy control in three website visit scenarios; the guest, registering, and log-in visits. These attributes include awareness, efficiency, comprehension, functionality, and choice. Then, we design a survey template based on these attributes and scenarios and collect data about privacy controls. Next, we analyse the availability and usability of each privacy control on health websites. Finally, we provide suggestions for improving the design of these privacy controls based on the data analysis results.
翻译:随着人们对隐私的认识和关注日益提高,许多服务提供者为用户提供了各种隐私控制。通过这些控制,用户获得了对收集、利用和传播其个人信息的权力。然而,这些控制可能深埋于菜单或设置之中,使用户难以查阅。此外,描述隐私控制所使用的术语有时会混淆或技术性,使用户有效理解和使用这些功能的能力更加复杂。对于卫生网站来说尤其如此,因为用户经常分享有关其健康和福祉的敏感信息。虽然提出了许多隐私控制以保护这些网站的用户数据,但现有的研究侧重于个人控制(例如隐私政策或饼干选出),而不是全面概述隐私状况。此外,许多研究侧重于隐私控制的技术方面,而没有考虑到这些特征从用户的角度来理解和使用这些特征的实用性。本文件的目的是通过分析四种隐私控制(即隐私模板、隐私通知、隐私政策、隐私设定,以及隐私设定,以及评估这些在访问最多的前100个网站的可访问性数据数据数据数据数据数据数据数据数据,我们为每个访问的可选取性、每个网站的可选取性进行了数据分析。我们为每个访问的准确性,我们为每个网站提供这些访问的可理解性,这些可访问的可理解性,我们根据访问的可访问的可理解性网站,这些可访问的可理解性,这些可访问的可访问的可访问性。</s>