"If I press delete, it's gone" - User Understanding of Online Data Deletion and Expiration

In this paper, we present the results of an interview study with 22 participants and two focus groups with 7 data deletion experts. The studies explored understanding of online data deletion and retention, as well as expiration of user data. We used different scenarios to shed light on what parts of the deletion process users understand and what they struggle with. As one of our results, we identified two major views on how online data deletion works: UIBased and Backend-Aware (further divided into levels of detail). Their main difference is on whether users think beyond the user interface or not. The results indicate that communicating deletion based on components such as servers or “the cloud” has potential. Furthermore, generic expiration periods do not seem to work while controllable expiration periods are preferred.

[1]  Blase Ur,et al.  "i read my Twitter the next morning and was astonished": a conversational perspective on Twitter regrets , 2013, CHI.

[2]  W. Keith Edwards,et al.  More than meets the eye: transforming the user experience of home network management , 2008, DIS '08.

[3]  Eran Toch,et al.  Retrospective privacy: managing longitudinal privacy in online social networks , 2013, SOUPS.

[4]  Alessandro Acquisti,et al.  Tweets are forever: a large-scale quantitative analysis of deleted tweets , 2013, CSCW.

[5]  Jose M. Such,et al.  "I feel stupid I can't delete...": A Study of Users' Cloud Deletion Practices and Coping Strategies , 2017, SOUPS.

[6]  Sebastian Günther Folk Models of Home Computer Security , 2012 .

[7]  Abigail Sellen,et al.  User sketches: a quick, inexpensive, and effective way to elicit more reflective user feedback , 2006, NordiCHI '06.

[8]  Kevin R. B. Butler,et al.  Forgive and forget: return to obscurity , 2013, NSPW '13.

[9]  Yang Wang,et al.  A field trial of privacy nudges for facebook , 2014, CHI.

[10]  Martin Ortlieb,et al.  Expert and Non-Expert Attitudes towards (Secure) Instant Messaging , 2016, SOUPS.

[11]  Krishna P. Gummadi,et al.  Forgetting in Social Media: Understanding and Controlling Longitudinal Exposure of Socially Shared Data , 2016, SOUPS.

[12]  L. Jean Camp,et al.  Mental models of privacy and security , 2009, IEEE Technology and Society Magazine.

[13]  Laura A. Dabbish,et al.  "My Data Just Goes Everywhere: " User Mental Models of the Internet and Implications for Privacy and Security , 2015, SOUPS.

[14]  Blase Ur,et al.  The post anachronism: the temporal dimension of facebook privacy , 2013, WPES.

[15]  Yang Wang,et al.  "I regretted the minute I pressed share": a qualitative study of regrets on Facebook , 2011, SOUPS.

[16]  Mikko Tapani Karaiste Delete: The virtue of forgetting in the digital age , 2010 .

[17]  K. A. Ericsson,et al.  Verbal reports as data. , 1980 .