Deceptive Design in Cookie Consent Requests: A User-Centered Perspective on Privacy
| dc.contributor.author | Tuokkola, Noora | |
| dc.contributor.author | Koskelainen, Tiina | |
| dc.contributor.author | Havinen, Laura | |
| dc.contributor.author | Rousi, Rebekah | |
| dc.contributor.editor | Tatti, Nikolaj | |
| dc.contributor.editor | Kasurinen, Jussi | |
| dc.contributor.editor | Päivärinta, Tero | |
| dc.contributor.orcid | https://orcid.org/0009-0000-3364-7407 | |
| dc.contributor.orcid | https://orcid.org/0000-0001-5771-3528 | |
| dc.date.accessioned | 2026-03-30T08:26:00Z | |
| dc.date.issued | 2026 | |
| dc.description.abstract | This study explores how users perceive their privacy in cookie consent requests that feature deceptive patterns, and the role of deceptive design in shaping these perceptions. It proposes a theory-informed analytical framework synthesizing four key factors influencing privacy perceptions: privacy concerns, control over privacy, trust in data collectors, and privacy risks. Using method triangulation – combining user testing, think-aloud protocol, and thematic interviews - the empirical study adopts a user-centered perspective. The findings reveal a predominantly negative influence of deceptive design on privacy perceptions. Although users may have learned to withstand or bypass deceptive patterns, their perceptions were fluid, shaped by the design, context, and personal habits. Overall, users felt their privacy was often compromised, undervalued, and unprotected. This study advances existing knowledge by emphasizing design’s role and offering a synthesized framework capturing the joint influence of perceptual factors on privacy perceptions. It underscores the importance of user experience in privacy evaluations, moving beyond the traditional view of privacy as mere compliance. Moreover, it highlights the paradox of protective mechanisms employing deceptive patterns that compromise user privacy. | en |
| dc.description.notification | © 2025 Copyright for this paper by its authors. Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0). | |
| dc.description.reviewstatus | fi=vertaisarvioitu|en=peerReviewed| | |
| dc.identifier.uri | https://osuva.uwasa.fi/handle/11111/20032 | |
| dc.identifier.urn | URN:NBN:fi-fe2026033024134 | |
| dc.language.iso | en | |
| dc.publisher | RWTH Aachen | |
| dc.relation.conference | Annual Doctoral Symposium of Computer Science | |
| dc.relation.funder | Suomen Akatemia | fi |
| dc.relation.funder | Academy of Finland | en |
| dc.relation.grantnumber | 348391 | |
| dc.relation.ispartof | Proceedings of the Annual Doctoral Symposium of Computer Science 2025 | |
| dc.relation.ispartofjournal | CEUR workshop proceedings | |
| dc.relation.issn | 1613-0073 | |
| dc.relation.url | https://ceur-ws.org/Vol-4181/paper09.pdf | |
| dc.relation.url | https://urn.fi/URN:NBN:fi-fe2026033024134 | |
| dc.relation.volume | 4181 | |
| dc.rights | https://creativecommons.org/licenses/by/4.0/ | |
| dc.source.identifier | 527cf9fe-8aa0-4f5d-8727-62c8c33e10fa | |
| dc.source.metadata | SoleCRIS | |
| dc.subject | Cookie consent requests | |
| dc.subject | privacy perceptions | |
| dc.subject | deceptive patterns | |
| dc.subject | deceptive design | |
| dc.subject | privacy by design | |
| dc.subject.discipline | fi=Tietojärjestelmätiede|en=Information Systems Science| | |
| dc.subject.discipline | fi=Viestintätieteet|en=Communication Studies| | |
| dc.title | Deceptive Design in Cookie Consent Requests: A User-Centered Perspective on Privacy | |
| dc.type.okm | fi=A4 Vertaisarvioitu artikkeli konferenssijulkaisussa|en=A4 Article in conference proceedings (peer-reviewed)| | |
| dc.type.publication | article | |
| dc.type.version | publishedVersion |
Tiedostot
1 - 1 / 1