Information and Computer Security
Emerald Publishing Limited
NSF, Division Of Computer and Network Systems (CNS) 1949699
NSF, Division Of Computer and Network Systems (CNS)
Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial 4.0 License
A huge amount of personal and sensitive data are shared on Facebook, which makes it a prime target for attackers. Adversaries can exploit third-party applications connected to a user’s Facebook profiles (i.e. Facebook apps) to gain access to this personal information. Users’ lack of knowledge and the varying privacy policies of these apps make them further vulnerable to information leakage. However, little has been done to identify mismatches between users’ perceptions and the privacy policies of Facebook apps. This paper aims to address this challenge in the work.
The analysis reveals significant mismatches between users’ privacy perceptions and reality (i.e. privacy policies of Facebook apps), where the authors identified over-optimism not only in users’ perceptions of information collection but also in their self-efficacy in protecting their information in Facebook despite experiencing negative incidents in the past.
To the best of the knowledge, this is the first study on the gap between users’ privacy perceptions around Facebook apps and reality. The findings from this study offer direction for future research to address that gap through designing usable, effective and personalized privacy notices to help users to make informed decisions about using Facebook apps.
Seng, S., Al-Ameen, M.N. and Wright, M. (2021), "A look into user privacy and third-party applications in Facebook", Information and Computer Security, Vol. 29 No. 2, pp. 283-313. https://doi.org/10.1108/ICS-08-2019-0108