The Interdisciplinary Research group in Socio-Technical Cybersecurity (IRiSC – University of Luxembourg’s Centre for Security, Reliability and Trust) have set up a research proposal meant to build scientific knowledge with the goal of establishing a reliable and standardised use of icons and other graphical indicators and patterns in the data protection, privacy and security domains.
The research addresses issues concerning icons and other graphical cues that presumptively improve the transparency and comprehensibility of online information addressed to data subjects, as suggested in the GDPR. The expected contributions are the following:
- a critical evaluation of icons as effective means of communication of data protection, privacy and security concepts on online documents and interfaces.
- insights about the extent to which icons can be considered an appropriate means to enhance the transparency of information provided to data subjects, as envisaged by Art. 12.7 GDPR.
- evidence-based guidelines for the meaningful implementation of icons in multiple scenarios where the transparency of communication is crucial. The guidelines provide evidence about the efficacy of certain visual designs and examples, and are meant to help organizations enhance their transparency practices and demonstrate accountability.
Most relevant publications
Rossi, A & Lenzini, G., (2020). Making the Case for Evidence-based Standardization of Data Privacy and Data Protection Visual Indicators. In: R. Ducato (Eds.), JOAL Special issue on Visual Law Vol. 8 No. 1 (2020), JOAL.
Rossi, A. & Lenzini, G., (forthcoming). Which Properties has an Icon? A Critical Discussion on Evaluation Methods for Standardised Data Protection Iconography. Proceedings of the 8th Workshop on Socio-Technical Aspects in Security and Trust (STAST), Springer.
Further project description and contact information are available here