Cumulative Revelations of Personal Data *
Lead Research Organisation:
University of Strathclyde
Department Name: Computer and Information Sciences
Abstract
Cumulative Revelations in Personal Data takes a multidisciplinary approach to investigating how small, apparently innocuous pieces of employees' personal information, which are generated through interactions with/in networked systems over time, collectively pose significant yet unanticipated risk to personal reputation and employers' operational security. Such cumulative revelations come from personal data that are shared intentionally by an individual, from data shared about an individual by others, from recognition software that identifies and tags people and places automatically, and from common cross-authentication practices that favour convenience over security (e.g. signing into AirBnB via Facebook). Brought together, these data can provide unintended insights to others into (for example) an individual's personal habits, work patterns, personality, emotion, and social influence. Collectively these data thus have the potential to create adverse consequences for that individual (e.g. through reputational damage), their employer (e.g. by creating opportunities for cybercrime), and even for national security.
The research brings together multidisciplinary expertise in Socio-Digital Interaction, Co-design, Interactive Information Retrieval, and Computational Legal Theory, all working in collaboration with a key industry partner, the Royal Bank of Scotland, which employs more than 92,000 staff across 12 national, international and private banks and for which security concerns are paramount, as well as UK Government security agencies, via the Government Office for Science and the Centre for Research and Evidence on Security Threats.
The research will examine the potential adverse revelations delivered by an individual employee's holistic digital footprint through the development of a prototype software tool that maps out a portrait of a user's digital footprint and reflects it back to them. This tool will enable individuals to understand the cumulative nature of their personal data, and better comprehend the associated vulnerabilities and risks. Responding to employers' concerns over organisational security risks created by cumulative revelations of their employees' data, the research will also identify conflicts and ambiguities in security service design and implementation when the motivations and actions of individual employees are balanced against organisational security philosophy, enabling mitigation against the attendant risks, issues and consequences of cumulative revelations from organisational and individual perspectives.
The research brings together multidisciplinary expertise in Socio-Digital Interaction, Co-design, Interactive Information Retrieval, and Computational Legal Theory, all working in collaboration with a key industry partner, the Royal Bank of Scotland, which employs more than 92,000 staff across 12 national, international and private banks and for which security concerns are paramount, as well as UK Government security agencies, via the Government Office for Science and the Centre for Research and Evidence on Security Threats.
The research will examine the potential adverse revelations delivered by an individual employee's holistic digital footprint through the development of a prototype software tool that maps out a portrait of a user's digital footprint and reflects it back to them. This tool will enable individuals to understand the cumulative nature of their personal data, and better comprehend the associated vulnerabilities and risks. Responding to employers' concerns over organisational security risks created by cumulative revelations of their employees' data, the research will also identify conflicts and ambiguities in security service design and implementation when the motivations and actions of individual employees are balanced against organisational security philosophy, enabling mitigation against the attendant risks, issues and consequences of cumulative revelations from organisational and individual perspectives.
Planned Impact
The research will achieve impact in a range of ways. Here we outline them using the EPSRC categories for impact.
Knowledge - techniques. We will develop prototype software tools that map out a holistic portrait of an individual user's digital footprint, and reflect it back to them. These tools will enable individuals to understand their cumulative digital footprints, and to comprehend associated vulnerabilities and risks of cumulative revelations.
Society - Policy. Stakeholder workshops will involve policymakers, who we will access via the Government Office for Science and through CREST. Workshops will use the Picture Book approach that we have used previously with policymakers, law enforcement agencies and industry. This approach maximises opportunities to share research insights in ways that enable them to be operationalised by stakeholders. Further, the involvement of legal experts as project partners (Bristows) and as colaborators (Schafer, co-I) means that our research insights are framed in current and predicted legislation - adding further utility for policy.
Society - Quality of Life. The tools that we develop will increase digital literacy and personal agency over UK citizens' digital footprints. This in turn will assist them in protecting their privacy, reducing risk to reputation, and the potential to be victims of cybercrimes.
People - Skills. Cyber security is an area where there are not sufficient skilled people to fill available posts. We have attracted funding for two PhD studentships and one postdoctoral intern from our project partners - all of whom will emerge from the project with cutting edge cyber security skills. Further, the project team, through interdisciplinary working, will extend their own skills far beyond the traditional borders of their disciplines. The stakeholder workshops, and our deep engagement with project partners, will foster cross-fertilisation of skills across academia, industry and UK security agencies.
Economy - Products and Procedures: Working in partnership with RBS and UK Security Agencies (via GO-Science) we will develop prototype software tools that reduce the risk to organisations of cumulative revelations linked to personal data. The risks that will be reduced include cyber crime and insider threats. These risks are significant, and increasing. An average large organisation can expect 81 million security events over the course of the year, with 55% of security breaches caused by individuals with legitimate access to an organisation's system.
Knowledge - techniques. We will develop prototype software tools that map out a holistic portrait of an individual user's digital footprint, and reflect it back to them. These tools will enable individuals to understand their cumulative digital footprints, and to comprehend associated vulnerabilities and risks of cumulative revelations.
Society - Policy. Stakeholder workshops will involve policymakers, who we will access via the Government Office for Science and through CREST. Workshops will use the Picture Book approach that we have used previously with policymakers, law enforcement agencies and industry. This approach maximises opportunities to share research insights in ways that enable them to be operationalised by stakeholders. Further, the involvement of legal experts as project partners (Bristows) and as colaborators (Schafer, co-I) means that our research insights are framed in current and predicted legislation - adding further utility for policy.
Society - Quality of Life. The tools that we develop will increase digital literacy and personal agency over UK citizens' digital footprints. This in turn will assist them in protecting their privacy, reducing risk to reputation, and the potential to be victims of cybercrimes.
People - Skills. Cyber security is an area where there are not sufficient skilled people to fill available posts. We have attracted funding for two PhD studentships and one postdoctoral intern from our project partners - all of whom will emerge from the project with cutting edge cyber security skills. Further, the project team, through interdisciplinary working, will extend their own skills far beyond the traditional borders of their disciplines. The stakeholder workshops, and our deep engagement with project partners, will foster cross-fertilisation of skills across academia, industry and UK security agencies.
Economy - Products and Procedures: Working in partnership with RBS and UK Security Agencies (via GO-Science) we will develop prototype software tools that reduce the risk to organisations of cumulative revelations linked to personal data. The risks that will be reduced include cyber crime and insider threats. These risks are significant, and increasing. An average large organisation can expect 81 million security events over the course of the year, with 55% of security breaches caused by individuals with legitimate access to an organisation's system.
Organisations
- University of Strathclyde (Lead Research Organisation)
- University of Colorado Boulder (Collaboration)
- University of Michigan (Collaboration)
- University of California, Irvine (Collaboration)
- Twitter (Collaboration)
- Royal Bank of Scotland (Collaboration)
- Facebook (Collaboration)
- Government of the UK (Collaboration)
- DePaul University (Collaboration)
- Bristows (Project Partner)
- Government Office for Science (Project Partner)
- The Royal Bank of Scotland PLC (Project Partner)
Publications
Armstrong A
(2023)
Everyday digital traces
in Big Data & Society
Azzopardi L
(2022)
Making sense of Trifles: Data Narratives and Cumulative Data Disclosure
in Jusletter-IT
Azzopardi, L.
(2021)
Cumulative revelations in personal data
Htait A
(2020)
DataMirror: Reflecting on One's Data Self
Moncur W
(2024)
Mosaics of Personal Data: Digital Privacy During Times of Change
in Interactions
Nash C
(2022)
Recht Digital
Nicol E
(2022)
Revealing Cumulative Risks in Online Personal Information: A Data Narrative Study
in Proceedings of the ACM on Human-Computer Interaction
Related Projects
| Project Reference | Relationship | Related To | Start | End | Award Value |
|---|---|---|---|---|---|
| EP/R033889/1 | 31/03/2019 | 29/07/2020 | £338,038 | ||
| EP/R033889/2 | Transfer | EP/R033889/1 | 30/07/2020 | 29/09/2022 | £228,321 |
| Description | We designed two online methods, determined by the necessary move to enabling online participation of respondents during Lockdown, as opposed to the planned for face-to-face participatory design workshops. These methods directly built on the outcomes from the data narrative study, with the first one trialled with some of the same participants. Findings included: That our multi-method approach prompted changes in participants' thought or action concerning their personal online safety and approaches to mitigating risk. Knowledge was exchanged during the research interaction as well as across our wider multi-method approach (including the earlier data narrative study), improving participants' data literacy. The 'ongoingness' of digital traces requires careful management to cope with what Pink et al. (2018) call the 'processual element of the everyday'. Participants' coping strategies include retrospective curation of their information, using pseudonyms, entering fake information, encrypting data, changing privacy settings and using sparingly a particular technology e.g. location tracking. The online Mural format enabled participants to articulate approaches to mitigating online risk and demonstrate their awareness of the care required to control and maintain separation between one's digital traces, e.g. between the public, private, personal and professional self, something that had been challenging for them in the earlier interviews. Mostly, participants discussed these separations and collision of traces from their own perspective and experiences, showing how the online tool and the case of 'Alex Smith' in combination with the discussions with the researcher encouraged some to narrate and self-disclose quite personal information. It was apparent that participants thought digital traces only provide a fragment and/or an incomplete picture of a personality and their values, and that this partial representation could invite inaccurate or harmful inferences. Most were cognisant that the persistent function of someone's online information means that it is always contingent on its context of reception and 'not a reflection of who they are now'. Grounded in these findings we went on the design a more extensive assemblage of 'Taylor Addison's' online information in collaboration with the Strathclyde team. This browser-based cyber safety tool has the dual aim of collecting research data while promoting respondents' awareness of the potential for diachronical (across traces) and synchronical (across time) functions of cumulative risk within digital traces, for deployment amongst a much wider population. |
| Exploitation Route | We have: 1. developed a replicable method (Alex Smith) which has been published in Big Data and Society 2. made our datasets available for reuse, 3. informed the development of a toolbox with AI4People (https://eismd.eu/ai4people/) to help companies carry out the mandated impact assessments under the EU AI Act. |
| Sectors | Digital/Communication/Information Technologies (including Software) Government Democracy and Justice Security and Diplomacy |
| Description | Impact from tool development: Emerging impact from this award lies in development of new prototype tools to train staff in how to manage their online profiles to avoid others 'joining the dots' and gaining unintended insights into their lives. This is particularly relevant where an employer has security considerations to attend to. The tools are expected to deliver economic impact by protecting organisations from information leakage, and societal impact by enabling citizens to protect their privacy online more effectively. The Big Data & Society article Everyday Digital Traces (2023) shares sufficient information on the "Alex Smith" method that we developed to enable contextually relevant customisation. Impacts on policy and practice: (1) the research has informed the TAS response to the UK Government consultation on the White paper on AI regulation, and is now also being used to develop a toolbox with AI4People (https://eismd.eu/ai4people/) to help companies carry out the mandated impact assessments under the EU AI Act. (2) The way in which the GDPR conceptualizes consent does not match the way in which people think about it when they organize their daily online activity. The optimism expressed by the EU about the increased understanding of privacy, gained through quantitative surveys, does not match the qualitative interviews we conducted, and which point to a much more sceptical, if not resigned, attitude - one that is also at odds with the depiction of privacy in many of the more GDPR critical news sources that too depict us as (over) confident users of our rights. While this could be mainly a problem of communication, a deeper analysis shows that the GDPR's "risk-based" approach uses an understanding of risk that at odds with the way we make risk-based decisions more generally, and overburdens the individual. Our research also shows possible conflicts with other legal regimes, which will be particularly an issue in the post-Brexit data regime. Equality Legislation, in particular, imposes on employers surveillance duties that can be in conflict with Data Protection requirements if interpreted too broadly. Our research so far indicates that the way risk is conceptualised in other legal fields, most importantly environmental and health law, could lead to a legal regime closer to the needs and capabilities of the citizen. Furthermore, we showed how visualisation tools can assist citizens to make better-informed risk decisions. |
| Sector | Digital/Communication/Information Technologies (including Software),Government, Democracy and Justice,Security and Diplomacy |
| Impact Types | Societal Policy & public services |
| Description | Contribution of evidence to House of Lords COVID-19 Committee - Living online: the long term impact on wellbeing |
| Geographic Reach | National |
| Policy Influence Type | Contribution to a national consultation/review |
| URL | https://pureportal.strath.ac.uk/en/activities/contribution-of-evidence-to-house-of-lords-covid-19-co... |
| Description | NPCC Violence against women and girls Roundtable |
| Geographic Reach | National |
| Policy Influence Type | Participation in a guidance/advisory committee |
| Description | Research Ethics commitee Technische Universität Graz |
| Geographic Reach | Europe |
| Policy Influence Type | Participation in a guidance/advisory committee |
| Impact | As an outcome of the event, a policy document was drafted for the senate of the university. As this is the first Austrian university to start such a process, hopes are that it could become a blueprint for other universities in the region. |
| Description | AP4L: Adaptive PETs to Protect & emPower People during Life Transitions |
| Amount | £2,794,276 (GBP) |
| Funding ID | EP/W032473/1 |
| Organisation | Engineering and Physical Sciences Research Council (EPSRC) |
| Sector | Public |
| Country | United Kingdom |
| Start | 03/2022 |
| End | 03/2025 |
| Title | Alex Smith method |
| Description | The Big Data & Society article Everyday Digital Traces (2023) https://journals.sagepub.com/doi/full/10.1177/20539517231213827 presents the replicable and contextually customsiable "Alex Smith" method that we developed. We used a co-designed, fictional persona called Alex Smith to concretise and represent people's online information to help participants (through role-playing) to reflect on data and digital traces. Drawing together four fields of scholarly research concerning personal data: digital traces and the digital self, datafication and dataveillance, mundane, everyday data and the data journey - we advanced understandings of personal data by exploring ordinary people's seemingly innocuous digital traces generated through everyday online interactions. The method developed enabled investigations into ordinary people's engagement with their data, and can be adapted for and used with different participant groups, which also supports their awareness of cumulative functions of personal data and potential use by un/known actors. |
| Type Of Material | Improvements to research infrastructure |
| Year Produced | 2023 |
| Provided To Others? | Yes |
| Impact | Too early to quantify |
| URL | https://journals.sagepub.com/doi/full/10.1177/20539517231213827 |
| Title | Cumulative Revelations in Personal Data Study 1 |
| Description | Data collected in respect of EPSRC Cumulative Revelations in Personal Data EP/R033889/1 This project was a major EPSRC funded study that sought to better understand the revelations that arise when pieces from an individual's personal information available online are connected over time and across multiple platforms. Such more complete digital traces can give unintended insights into their life and opinions. Extensive fieldwork included an interview study (Study 1) with UK employees regarding their experiences of cumulative revelation of their data. We examined the risks and harms to individuals and employers when others joined the dots between their online information. Interviews employed a "digital narrative" technique where participants were asked to make drawings of their information and communication networks, the types of information shared and details of to whom it was available or visible. Study 1 was conducted online in the period May 2020-August 2020 when much of the UK was in lockdown due to the Covid-19 pandemic. Interviews included questions addressing changes to information sharing behaviour occurring during lockdown conditions. The dataset contains: • Transcripts of 26 interviews with the Uk public • Photographic images of drawings created by participants during the interviews • Data from a technology survey completed by participants at the start of each interview regarding their use of devices, information channels and data storage |
| Type Of Material | Database/Collection of data |
| Year Produced | 2023 |
| Provided To Others? | Yes |
| Impact | None yet |
| Description | Cum. Revelations |
| Organisation | Government of the UK |
| Department | Government Office for Science |
| Country | United Kingdom |
| Sector | Public |
| PI Contribution | Presentations at Home Office and ACE Vivace events |
| Collaborator Contribution | Attendance at advisory board, and ad-hoc advice |
| Impact | Recorded under other sections in Researchfish |
| Start Year | 2019 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | DePaul University |
| Country | United States |
| Sector | Academic/University |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | |
| Department | Facebook, UK |
| Country | United Kingdom |
| Sector | Private |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | |
| Country | United States |
| Sector | Private |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | University of California, Irvine |
| Country | United States |
| Sector | Academic/University |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | University of Colorado Boulder |
| Country | United States |
| Sector | Academic/University |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | International workshop: Researcher Wellbeing and Best Practices in Emotionally Demanding Research |
| Organisation | University of Michigan |
| Country | United States |
| Sector | Academic/University |
| PI Contribution | Researcher Wellbeing and Best Practices in Emotionally Demanding Research (Forthcoming). Feuston, Jl., Bhattacharya, A., Andalibi, N., Ankrah, E., Erete, S., Handel, M., Moncur, W., Vieweg, S., Brubaker, J. CHI2022 Workshop. |
| Collaborator Contribution | This workshop is one of a number of developments that have emerged as a result of my single-author 2013 paper, "The emotional wellbeing of researchers: considerations for practice". HCI researchers increasingly conduct emotionally demanding research in a variety of different contexts. Though scholarship has begun to address the experiences of HCI researchers conducting this work, there is a need to develop guidelines and best practices for researcher wellbeing. In this one-day CHI workshop, we will bring together a group of HCI researchers across sectors and career levels who conduct emotionally demanding research to discuss their experiences, self-care practices, and strategies for research. Based on these discussions, we will work with workshop attendees to develop best practices and guidelines for researcher wellbeing in the context of emotionally demanding HCI research; launch a repository of community-sourced resources for researcher wellbeing; document the experiences of HCI researchers conducting emotionally demanding research; and establish a community of HCI researchers conducting this type of work. |
| Impact | The collaboration has led to a workshop at CHI, the premier HCI cOnference globally. |
| Start Year | 2021 |
| Description | Royal Bank of Scotland |
| Organisation | Royal Bank of Scotland |
| Country | United Kingdom |
| Sector | Private |
| PI Contribution | Project is in its early days, so no contribution yet. |
| Collaborator Contribution | Membership of strategic advisory board, and provision of access to bank staff for research purposes. |
| Impact | Project is in its early days, so no contribution yet. |
| Start Year | 2019 |
| Description | Demonstrator Booth |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Professional Practitioners |
| Results and Impact | Approx. 50 information retrieval and behaviour professionals visited our demonstration booth at ACM SIGIR Conference 2022 to view and interact with our persona based scenarios tool for raising awareness about the threats and harms of cumulative revelations in online data. |
| Year(s) Of Engagement Activity | 2022 |
| Description | EDEN Community Webinar: Lawful Hacking within Investigations of Serious and Organized Crime |
| Form Of Engagement Activity | A formal working group, expert panel or dialogue |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Professional Practitioners |
| Results and Impact | participation in a panel discussion organized for the Europol Data Protection Experts Network (EDEN) on the topic of lawful equipment interference. Discussing results of TAS and Cumulative Disclosure research projects to warn about significantly higher privacy risks, and risks to the safety of digital infrastructures, than this is currently cosnidered. |
| Year(s) Of Engagement Activity | 2023 |
| URL | https://www.youtube.com/watch?v=v76h_t4WoDk |
| Description | Home Office STAR presentation |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Policymakers/politicians |
| Results and Impact | This was an invited talk at Home Office STAR Week 2022. The host was the Behavioural and Social Science Programme Lead, Science & Technology Team, Homeland Security Group. Talk title was "Leaks and Secrets: Creative Approaches to Cybersecurity Training". 50-60 Home Office staff attended in person/ by Teams link. We showcased three creative approaches to delivering training on cybersecurity issues, informed by four years of cybersecurity research. The focus was on information revealed online, and secrets kept - with relevance for onboarding staff and for increasing citizens' digital privacy literacy. There were follow-on discussions with Behavioural and Social Science Programme Lead and the Deputy Head of Science for the Home Office. |
| Year(s) Of Engagement Activity | 2022 |
| Description | Invited talk at FCA |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Industry/Business |
| Results and Impact | Invited talk "Navigating Change and Cyber Security Risks" given as part of the FCA as part of their Cyber Month |
| Year(s) Of Engagement Activity | 2023 |
| Description | Media article : online profile and job prospects |
| Form Of Engagement Activity | A press release, press conference or response to a media enquiry/interview |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Public/other audiences |
| Results and Impact | Article entitled "Your forgotten digital footprints could step on your job prospects - here's how to clean up" published in The Conversation in English and Malaysian. Focus on how online digital footprints across platforms and across time can impact job prospects. Readership included USA, Vietnam, Malaysia. Article syndicated to Yahoo News https://uk.news.yahoo.com/forgotten-digital-footprints-could-step-100431189.html?guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce_referrer_sig=AQAAAIkvHy1TnxMIDZG6ntCRnwFLYOdsfZnowzfk6XFbdaK46IeqtwcHs56xWEZdPRoPuW0VjXUxMhuX9AoQ93lSa84O2sd0lPgkll9c7S8yCodq6mXoqgr_Hg1Np9Lpcnc9TUyuZUO4FRwshFF4sKPN-TQ5yl9i2KFLs-lW15UwpNFD&guccounter=2 |
| Year(s) Of Engagement Activity | 2022 |
| URL | https://theconversation.com/your-forgotten-digital-footprints-could-step-on-your-job-prospects-heres... |
| Description | SPRITE NETWORK+ TRUSTED RESEARCH WORKSHOP |
| Form Of Engagement Activity | A formal working group, expert panel or dialogue |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Policymakers/politicians |
| Results and Impact | SPRITE+ held a workshop in March 2021 to identify ways to improve researcher awareness of issues related to "Trusted Research", an umbrella term that includes issues related to: • Regulatory compliance (e.g., Export Controls, the Academic TA Scheme, GDPR, partnercountry regulations) • Protecting IP (including cyber security and data protection issues) • Conflicts of interest with other research partners • Risk of foreign interference in research/teaching and academic freedom • Protecting staff and students overseas • Reputational risk and ethical issues (including potential misuse/abuse/dual use of research knowledge) At a strategic level, the government and Universities UK have issued guidance aimed at senior leaders in the Higher Education sector, and many UK universities are actively working on adapting and rolling out the guidance. Although there is government guidance for Principal Investigators (PIs) and research teams, awareness and uptake of this guidance is patchy. The workshop explored the implications of current guidance for 'coal face' PIs and their teams, examining the barriers to awareness and implementation, and suggesting ways to improve the situation. 37 researchers from a range of career stages and research disciplines participated in a series of breakout discussions over three hours. |
| Year(s) Of Engagement Activity | 2021 |
| URL | https://pureportal.strath.ac.uk/en/activities/sprite-trusted-research-workshop |
| Description | University Public Engagement festival |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | Regional |
| Primary Audience | Public/other audiences |
| Results and Impact | Public engagement event. "Joining the Dots: Personal Data Security of FinTech Employees", involving Nicol, E. (Speaker)Moncur, W. (Chair)Azzopardi, L. (Speaker)Burkhard Schafer (Speaker)Daniel Carey (Speaker)Jo Briggs (Speaker)Amal Htait (Speaker) |
| Year(s) Of Engagement Activity | 2021 |
| URL | https://pureportal.strath.ac.uk/en/activities/engage-with-strathclyde-joining-the-dots-personal-data... |