Affiliation:
1. Minnesota State University, Mankato, USA
Abstract
Forty-six states require organizations to notify users when personally identifiable information has been exposed or when the organization’s data security measures have been breached. This article describes a qualitative document analysis of 13 data breach notification templates from state and federal agencies. The results confirm much of the typical advice for negative messages, but they suggest that the direct pattern may be an effective way to inform users as required by law, to overcome optimism bias, and to overcome rational ignorance. When a buffer is used, writers should not be afraid to refer to the bad news.
Subject
Economics, Econometrics and Finance (miscellaneous),Arts and Humanities (miscellaneous),Business, Management and Accounting (miscellaneous),Business and International Management
Cited by
19 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献