Privacy Legislation as Business Risks: How GDPR and CCPA are Represented in Technology Companies' Investment Risk Disclosures-Reference-Cited by-同舟云学术

Privacy Legislation as Business Risks: How GDPR and CCPA are Represented in Technology Companies' Investment Risk Disclosures

Published:2023-04-14 Issue:CSCW1 Volume:7 Page:1-26
ISSN:2573-0142
Container-title:Proceedings of the ACM on Human-Computer Interaction
language:en
Short-container-title:Proc. ACM Hum.-Comput. Interact.

Author:

Wong Richmond Y.¹^ORCID,Chong Andrew²^ORCID,Aspegren R. Cooper³^ORCID

Affiliation:

1. Georgia Institute of Technology, Atlanta, GA, USA

2. University of California Berkeley, Berkeley, CA, USA

3. New York University, New York, NY, USA

Abstract

Power exercised by large technology companies has led to concerns over privacy and data protection, evidenced by the passage of legislation including the EU's General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). While much privacy research has focused on how users perceive privacy and interact with companies, we focus on how privacy legislation is discussed among a different set of relationships-those between companies and investors. This paper investigates how companies translate the GDPR and CCPA into business risks in documents created for investors. We conduct a qualitative document analysis of annual regulatory filings (Form 10-K) from nine major technology companies. We outline five ways that technology companies consider GDPR and CCPA as business risks, describing both direct and indirect ways that the legislation may affect their businesses. We highlight how these findings are relevant for the broader CSCW and privacy research communities in research, design, and practice. Creating meaningful privacy changes within existing institutional structures requires some understanding of the dynamics of these companies' decision-making processes and the role of capital.

Funder

Meta

Publisher

Association for Computing Machinery (ACM)

Subject

Computer Networks and Communications,Human-Computer Interaction,Social Sciences (miscellaneous)

Link

https://dl.acm.org/doi/pdf/10.1145/3579515

Reference109 articles.

1. The Securities and Exchange Commission and the Growing Need for Cybersecurity in Modern Corporate America;Avellan Norah C.;Washburn Law Journal,2014

2. Karla Badillo-Urquiola , Yaxing Yao , Oshrat Ayalon , Bart Knijnenurg , Xinru Page , Eran Toch , Yang Wang , and Pamela J. Wisniewski . 2018. Privacy in Context: Critically Engaging with Theory to Guide Privacy Research and Design . In Companion of the 2018 ACM Conference on Computer Supported Cooperative Work and Social Computing ( Jersey City, NJ, USA) (CSCW '18). Association for Computing Machinery, New York, NY, USA, 425--431. https://doi.org/10.1145/3272973.3273012 10.1145/3272973.3273012 Karla Badillo-Urquiola, Yaxing Yao, Oshrat Ayalon, Bart Knijnenurg, Xinru Page, Eran Toch, Yang Wang, and Pamela J. Wisniewski. 2018. Privacy in Context: Critically Engaging with Theory to Guide Privacy Research and Design. In Companion of the 2018 ACM Conference on Computer Supported Cooperative Work and Social Computing (Jersey City, NJ, USA) (CSCW '18). Association for Computing Machinery, New York, NY, USA, 425--431. https://doi.org/10.1145/3272973.3273012

3. Yang Bao and Anindya Datta . 2014. Simultaneously Discovering and Quantifying Risk Types from Textual Risk Disclosures. Management Science 60, 6 (6 2014 ), 1371--1391. https://doi.org/10.1287/mnsc.2014.1930 10.1287/mnsc.2014.1930 Yang Bao and Anindya Datta. 2014. Simultaneously Discovering and Quantifying Risk Types from Textual Risk Disclosures. Management Science 60, 6 (6 2014), 1371--1391. https://doi.org/10.1287/mnsc.2014.1930

4. Living in the world risk society

5. Mark Bergen. 2021. Microsoft Will Allow More Repair Shops After Activist Protests. https://www.bloomberg.com/news/articles/2021--10-07/microsoft-will-allow-more-repair-shops-after-activist-protests Mark Bergen. 2021. Microsoft Will Allow More Repair Shops After Activist Protests. https://www.bloomberg.com/news/articles/2021--10-07/microsoft-will-allow-more-repair-shops-after-activist-protests

Cited by 12 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Who’s afraid of AI? socio-technological perspectives on artificial intelligence in the workforce: an Israeli case study;Aslib Journal of Information Management;2024-07-15

2. Legal Trouble?: UX Practitioners' Engagement with Law and Regulation;Designing Interactive Systems Conference;2024-07

3. IoT Cyber Attacks Detection - Survey;2024 16th International Conference on Electronics, Computers and Artificial Intelligence (ECAI);2024-06-27

4. Languaging Ethics in Technology Practice;ACM Journal on Responsible Computing;2024-06-20

5. ULDP: A User-Centric Local Differential Privacy Optimization Method;2024 IEEE World AI IoT Congress (AIIoT);2024-05-29