Informing the Design of Cookie Consent Interfaces with Research

Thursday, June 23, 2022 - 2:25 pm2:50 pm

Lorrie Cranor, Carnegie Mellon University


Websites frequently deploy cookie consent banners to comply with regulatory requirements. However, many of these consent banners do not actually meet regulatory requirements and may even be considered misleading or classified as dark patterns. Often well-intentioned practitioners use templates from popular cookie-management platforms and assume they are doing the right thing. In this talk I will walk through some of the common compliance mistakes that have been highlighted by privacy advocates and researchers, and provide evidence from large-scale online user studies at Carnegie Mellon University to demonstrate the impact of simple cookie consent banner design changes. We examined the impact on the decision users make, as well as on their comprehension, sentiment, and other factors. I will also talk about some of the commonly used terminology (some of which has been recommended by regulators) that may actually confuse and mislead users.

Lorrie Cranor, Carnegie Mellon University

Lorrie Faith Cranor is the Director and Bosch Distinguished Professor of the CyLab Security and Privacy Institute and FORE Systems Professor of Computer Science and of Engineering and Public Policy at Carnegie Mellon University. She is also co-director of the Collaboratory Against Hate: Research and Action Center. She directs the CyLab Usable Privacy and Security Laboratory (CUPS) and co-directs the Privacy Engineering masters program. In 2016 she served as Chief Technologist at the US Federal Trade Commission and previously she co-founded Wombat Security Technologies. She is a fellow of the ACM, IEEE, and AAAS and a member of the ACM CHI Academy.

@conference {280250,
author = {Lorrie Cranor},
title = {Informing the Design of Cookie Consent Interfaces with Research},
year = {2022},
address = {Santa Clara, CA},
publisher = {USENIX Association},
month = jun

Presentation Video