A systematic mapping study on automated analysis of privacy policies-Reference-Cited by-同舟云学术

A systematic mapping study on automated analysis of privacy policies

Published:2022-05-10 Issue:9 Volume:104 Page:2053-2076
ISSN:0010-485X
Container-title:Computing
language:en
Short-container-title:Computing

Author:

Del Alamo Jose M.^ORCID,Guaman Danny S.,García Boni,Diez Ana

Abstract

AbstractA privacy policy describes the operations an organization carries out on its users’ personal data and how it applies data protection principles. The automated analysis of privacy policies is a multidisciplinary research topic producing a growing but scattered body of knowledge. We address this gap by conducting a systematic mapping study which provides an overview of the field, identifies research opportunities, and suggests future research lines. Our study analyzed 39 papers from the 1097 publications found on the topic, to find what information can be automatically extracted from policies presented as textual documents, what this information is applied to, and what analysis techniques are being used. We observe that the techniques found can identify individual pieces of information from the policies with good results. However, further advances are needed to put them in context and provide valuable insight to end-users, organizations dealing with data protection laws and data protection authorities.

Funder

Comunidad de Madrid

Ministerio de Ciencia e Innovación

Escuela Politécnica Nacional

Publisher

Springer Science and Business Media LLC

Subject

Computational Mathematics,Computational Theory and Mathematics,Computer Science Applications,Numerical Analysis,Theoretical Computer Science,Software

Link

https://link.springer.com/content/pdf/10.1007/s00607-022-01076-3.pdf

Reference25 articles.

1. Morel V, Pardo R (2020) SoK: three facets of privacy policies. In: Workshop on privacy in the electronic society, Virtual, France. https://hal.inria.fr/hal-02267641

2. Wilson S et al (2016) The creation and analysis of a website privacy policy corpus. In: Proceedings of the 54th annual meeting of the association for computational linguistics, pp 1330–1340

3. Acar G et al (2014) The web never forgets: persistent tracking mechanisms in the wild. In: Proceedings of the 2014 ACM SIGSAC conference on computer and communications security, pp 674–689

4. Fielding R, Singer D (2019) Tracking preference expression (DNT). W3C note, W3C (January). https://www.w3.org/TR/2019/NOTE-tracking-dnt-20190117/

5. McDonald AM, Cranor LF (2008) The cost of reading privacy policies. Isjlp 4:543

Cited by 16 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Privacy policy analysis: A scoping review and research agenda;Computers & Security;2024-11

2. Large language models: a new approach for privacy policy analysis at scale;Computing;2024-08-22

3. Evaluating Quantized Llama 2 Models for IoT Privacy Policy Language Generation;Future Internet;2024-06-26

4. Hunter: Tracing anycast communications to uncover cross-border personal data transfers;Computers & Security;2024-06

5. A Study on Structured Text Parsing for Policies Based on BERTopic;2024 IEEE 6th Advanced Information Management, Communicates, Electronic and Automation Control Conference (IMCEC);2024-05-24