GranDIHC-BR 2025-2035 - GC5 - Human-Data Interaction, Data Literacy and Usable Privacy

Thiago Adriano Coleti; Sthéfano Bruno Santos Divino; André de Lima Salgado; Rodrigo Oliveira Zacarias; Juliana de Albuquerque Gonçalves Saraiva; Diego Addan Gonçalves; Marcelo Morandini; Rodrigo Pereira dos Santos

Thiago Adriano Coleti Universidade Estadual do Norte do Paraná https://orcid.org/0000-0002-1078-4334
Sthéfano Bruno Santos Divino Universidade Federal de Lavras https://orcid.org/0000-0002-9037-0405
André de Lima Salgado Universidade Federal de Lavras https://orcid.org/0000-0003-4396-1111
Rodrigo Oliveira Zacarias Universidade Federal do Estado do Rio de Janeiro https://orcid.org/0000-0003-0005-4669
Juliana de Albuquerque Gonçalves Saraiva Universidade Federal da Paraíba http://orcid.org/0000-0002-3857-1111
Diego Addan Gonçalves Universidade Tecnológica Federal do Paraná https://orcid.org/0000-0003-3355-3966
Marcelo Morandini Universidade de São Paulo https://orcid.org/0000-0001-5402-9544
Rodrigo Pereira dos Santos Universidade Federal do Estado do Rio de Janeiro https://orcid.org/0000-0003-4749-2551

Resumo

The phenomenon of the data deluge has brought to light issues related to the perception of the goals and impacts of data usage in individuals' daily lives. The manipulation of personal data, common in various application domains, suggests that it is practically impossible to interact with any technological resource without personal data being processed. This fact promotes the creation, improvement, and/or implementation of data usage regulations, such as Brazil's General Data Protection Law (LGPD), and has led to the emergence of a research and development area known as Human-Data Interaction (HDI). Work in HDI has diverse objectives, but concerns about data subjects and methods and techniques that support the development of products and services within HDI concepts are more common. Regarding these issues, it has been noted that the literature offers limited perspectives on HDI, Data Literacy, and Usable Privacy. In this sense, there is a need to explore aspects related to the protection of personal data in HDI. This involves strategies to promote data transparency and privacy while enhancing data literacy. In this scenario, this paper presents and discusses the Grand Challenge for the Human-Computer Interaction (HCI) field: developing methods and techniques that promote HDI with Data Literacy and Usable Privacy. This challenge was proposed in light of the need to promote the capacity for people to interact with data applications in a sustainable, educational, and secure manner to ensure that individuals/data subjects can enjoy all the benefits of these applications while privacy, security, and freedom can be managed and guaranteed. Additionally, the article also presents a research agenda detailing necessary actions, required resources, main difficulties, ways to evaluate results and progress, and ethical issues to guide the HCI community in addressing this Grand Challenge.

Palavras-chave: Human-Data Interaction, Data Literacy, Usable Privacy, Data Protection, Personal Data Transparency

Referências

Zouhair Elamrani Abou Elassad, Hajar Mousannif, Hassan Al Moatassime, and Aimad Karkouch. 2020. The application of machine learning techniques for driving behavior analysis: A conceptual framework and a systematic literature review. Engineering Applications of Artificial Intelligence 87 (2020), 103312.

Suzie Allard. 2012. DataONE: Facilitating eScience through Collaboration. Journal of eScience Librarianship 1, 1 (2012), 4–17. DOI: 10.7191/jeslib.2012.1004

Nisreen Ameen, Ali Tarhini, Alexander Reppel, and Amitabh Anand. 2021. Customer experiences in the age of artificial intelligence. Computers in human behavior 114 (2021), 106548.

Daniel Amo-filva, Francisco José García-peñalvo, and Jiahui Chen. 2022. Towards an ethical data literacy proficiency : a Moodle logs analytical tool. In Proceedings of XII International Conference on Virtual Campus (JICV). 2022–2024.

Tita Alissa Bach, Amna Khan, Harry Hallock, Gabriela Beltrão, and Sonia Sousa. 2024. A systematic literature review of user trust in AI-enabled systems: An HCI perspective. International Journal of Human–Computer Interaction 40, 5 (2024), 1251–1266. DOI: 10.1080/10447318.2022.2138826

Simone Diniz Junqueira Barbosa, Bruno Santana da Silva, Milene Selbach Silveira, Isabela Gasparini, Ticianne Darin, and Gabriel Diniz Junqueira Barbosa. 2021. Interação Humano-Computador e Experiência do Usuário. Autopublicação.

Paul Barth. 2022. The Seven Principles of Data Literacy The Seven Principles of Data Literacy A Blueprint to accelerate your business toward its data-driven future Foreword from Qlik. Technical Report. Accenture.

Marco Aurelio Beber, Carlos Andres Ferrero, Renato Fileto, and Vania Bogorny. 2017. Individual and Group Activity Recognition in Moving Object Trajectories. Journal of Information and Data Management 8, 1 (2017), 50. DOI: 10.5753/jidm.2017.1606

Shirley J Behrens. 1994. A conceptual analysis and historical overview of information literacy. College & research libraries 55, 4 (1994), 309–322.

Elisa Bertino. 2016. Data Security and Privacy: Concepts, Approaches, and Research Directions. In 2016 IEEE 40th Annual Computer Software and Applications Conference (COMPSAC), Vol. 1. 400–407. DOI: 10.1109/COMPSAC.2016.89

Abeba Birhane. 2021. Algorithmic injustice: a relational ethics approach. Patterns 2, 2 (2021).

JC Buitelaar. 2017. Post-mortem privacy and informational self-determination. Ethics and Information Technology 19, 2 (2017), 129–142. DOI: 10.1007/s10676-017-9421-9

Francesco Cafaro. 2012. Using embodied allegories to design gesture suites for human-data interaction. In Proceedings of the 2012 ACM Conference on Ubiquitous Computing UbiComp ’12. 560. DOI: 10.1145/2370216.2370309

Cinara Carneiro, Taciana Kudo, and Renato Bulcão Neto. 2024. Um método para transformação de requisitos legais em padrões de requisitos de software: Um estudo com a LGPD. In Anais do XXVII Congresso Ibero-Americano em Engenharia de Software (Curitiba/PR). SBC, Porto Alegre, RS, Brasil, 348–355. DOI: 10.5753/cibse.2024.28460

Luiz Paulo Carvalho, Jonice Oliveira, Flávia Maria Santoro, and Claudia Cappelli. 2021. Social Network Analysis, Ethics and LGPD, considerations in research. iSys Brazilian Journal of Information Systems 14, 2 (Aug. 2021), 28–52. DOI: 10.5753/isys.2021.1235

Ann Cavoukian. 2020. Understanding How to Implement Privacy by Design, One Step at a Time. IEEE Consumer Electronics Magazine 9, 2 (2020), 78–82. DOI: 10.1109/MCE.2019.2953739

Yang Cheng and Hua Jiang. 2020. How do AI-driven chatbots impact user experience? Examining gratifications, perceived privacy risk, satisfaction, loyalty, and continued use. Journal of Broadcasting & Electronic Media 64, 4 (2020), 592–614. DOI: 10.1080/08838151.2020.1834296

Mark Coeckelbergh. 2020. AI ethics. Mit Press.

Thiago Adriano Coleti, Pedro Luiz Pizzigatti Corrêa, Lucia Vilela Leite Filgueiras, and Marcelo Morandini. 2020. TR-Model. A Metadata Profile Application for Personal Data Transparency. IEEE Access 8, 1 (2020), 75184–75209. DOI: 10.1109/ACCESS.2020.2988566

Thiago A. Coleti, Marcelo Morandini, and Lucia Vilela Leite Filgueiras. 2024. Human-Data Interaction Syllabus for Undergraduate and Graduate Courses. Journal on Interactive Systems 15 (1 2024), 36–54. Issue 1. DOI: 10.5753/jis.2024.3251

Lorrie Faith Cranor and Norbou Buchler. 2014. Better Together: Usability and Security Go Hand in Hand. IEEE Security Privacy 12, 6 (Nov. 2014), 89–93. DOI: 10.1109/MSP.2014.109

Luca Alexander De and Emanuel von Zezschwitz. 2016. Usable privacy and security. it Information Technology 58, 5 (2016), 215–216. DOI: 10.1515/itit-2016-0034

Verena DIstler, Matthias Fassl, Hana Habib, Katharina Krombholz, Gabriele Lenzini, Carine Lallemand, Lorrie Faith Cranor, and Vincent Koenig. 2021. A Systematic Literature Review of Empirical Methods and Risk Representation in Usable Privacy and Security Research. Issue 6. DOI: 10.1145/3469845

Elisabeth Adriana Dudziak. 2003. Information literacy: princípios, filosofia e prática. Ciência da informação 32 (2003), 23–35.

Niklas Elmqvist. 2011. Embodied Human-Data Interaction. In CHI 2011 Extended Abstracts on Human Factors in Computing Systems. 1–4.

Nicola Fabiano. 2019. Ethics and the protection of personal data. Systemics, Cybernetics and Informatics 17 (2019), 58–64. Issue 2. [link]

Felicia Bosede Kehinde Fasae. 2024. Human and Technology Components in Data/Information Security. European Journal of Computer Science and Information Technology 12 (2 2024), 93–107. Issue 2. DOI: 10.37745/ejcsit.2013/vol12n293107

Alvaro Fernandez-Quilez. 2023. Deep learning in radiology: ethics of data and on the value of algorithm transparency, interpretability and explainability. AI and Ethics 3, 1 (2023), 257–265. DOI: 10.1007/s43681-022-00161-9

Lucia V. L. Filgueiras, Adriano S. F. Leal, Thiago Adriano Coleti, Marcelo Morandini, Pedro L.P. Correa, and Solange N. Alves-Souza. 2019. Keep System Status Visible: Impact of Notifications on the Perception of Personal Data Transparency. Human-Computer Interaction. Perspectives on Design 1 (2019), 513–530.

Ed Finn. 2024. Envisioning artificial intelligence. Science 383, 6679 (2024), 156–156. DOI: 10.1126/science.adm9749

Simone Fischer-Hübner and Farzaneh Karegar. 2024. Challenges of Usable Privacy. Springer International Publishing, Cham, 103–131. DOI: 10.1007/9783-031-54158-2_4

Julian Fraillon, John Ainley, Wolfram Schulz, Tim Friedman, and Daniel Duckworth. 2020. Preparing for life in a digital world: IEA international computer and information literacy study 2018 international report. Springer Nature.

Aline Shakti Franzke, Iris Muis, and Mirko Tobias Schäfer. 2021. Data Ethics Decision Aid (DEDA): a dialogical framework for ethical inquiry of AI and data projects in the Netherlands. Ethics and Information Technology 23, 3 (2021), 551–567. DOI: 10.1007/s10676-020-09577-5

Batya Friedman and Peter H. Kahn. 2002. Human values, ethics, and design. L. Erlbaum Associates Inc., USA, 1177–1201.

Simson Garfinkel and Heather Richter Lipford. 2014. Usable Security: History, Themes, and Challenges. Synthesis Lectures on Information Security, Privacy, and Trust, Vol. 5. Springer Cham.

Ella Glikson and Anita Williams Woolley. 2020. Human Trust in Artificial Intelligence: Review of Empirical Research. Academy of Management Annals 14, 2 (2020), 627–660. DOI: 10.5465/annals.2018.0057

Hamed Haddadi, Amir Chaudhry, Jon Crowcrof, Heidi Howard, Richard Mortier, and Derek Mcauley. 2015. Personal Data: Thinking Inside the Box. Aarhus Series on Human Centered Computing (2015), 8. DOI: 10.7146/aahcc.v1i1.21312 arXiv:1501.0473

Sichang He. 2023. Challenges and Strategies for Public Management in the Context of Big Data. In 2023 International Conference on Computer Applications Technology (CCAT). 212–216. DOI: 10.1109/CCAT59108.2023.00046

Dandan Huang, Melanie Tory, Bon Adriel Aseniero, Lyn Bartram, Scott Bateman, Sheelagh Carpendale, Anthony Tang, and Robert Woodbury. 2015. Personal visualization and personal visual analytics. IEEE Transactions on Visualization and Computer Graphics 21, 3 (2015), 420–433. DOI: 10.1109/TVCG.2014.2359887

Giovanni Iachello and Jason Hong. 2007. End-User Privacy in Human-Computer Interaction. Now Foundations and Trends.

Julian Jang-Jaccard and Surya Nepal. 2014. A survey of emerging threats in cybersecurity. J. Comput. System Sci. 80, 5 (Aug. 2014), 973–993. DOI: 10.1016/j.jcss.2014.02.005

Margot E Kaminski. 2021. The right to explanation, explained. In Research Handbook on Information Law and Governance. Edward Elgar Publishing, 278– 299.

Davinder Kaur, Suleyman Uslu, Kaley J Rittichier, and Arjan Durresi. 2023. Trustworthy artificial intelligence: A review. ACM Comput. Surv. 55, 2 (Feb. 2023), 1-38. DOI: 10.1145/3491209

Shristi Shakya Khanal, PWC Prasad, Abeer Alsadoon, and Angelika Maag. 2020. A systematic review: machine learning based recommendation systems for elearning. Education and Information Technologies 25, 4 (2020), 2635–2664. DOI: 10.1007/s10639-019-10063-9

Sabrina Kirrane, Javier D. Fernández, Wouter Dullaert, Uros Milosevic, Axel Polleres, Piero A. Bonatti, Rigo Wenning, Olha Drozd, and Philip Raschke. 2018. A scalable consent, transparency and compliance architecture. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) 11155 LNCS (2018), 131–136. Issue i. DOI: 10.1007/978-3-319-98192-5_25

Agnieszka Kitkowska, Yefim Shulman, Leonardo A Martucci, and Erik Wästlund. 2023. Designing for privacy: Exploring the influence of affect and individual characteristics on users’ interactions with privacy policies. Comput. Secur. 134, 103468 (Nov. 2023), 103468. DOI: 10.1016/j.cose.2023.103468

M. S. Lebo, S. Sutti, and R. C. Green. 2016. "Big data" gets personal. Science Translational Medicine 8, 322 (2016), 322fs3–322fs3. DOI: 10.1126/scitranslmed.aad9460

Zachary C. Lipton. 2018. The Mythos of Model Interpretability: In machine learning, the concept of interpretability is both important and slippery. Queue 16, 3 (jun 2018), 31–57. DOI: 10.1145/3236386.3241340

Bo Liu, Ming Ding, Sina Shaham, Wenny Rahayu, Farhad Farokhi, and Zihuai Lin. 2021. When machine learning meets privacy: A survey and outlook. ACM Computing Surveys (CSUR) 54, 2 (2021), 1–36. DOI: 10.1145/3436755

Afra Mashhadi, Fahim Kawsar, and Utku Günay Acer. 2014. Human Data Interaction in IoT: The ownership aspect. In 2014 IEEE World Forum on Internet of Things (WF-IoT). 159–162. DOI: 10.1109/WF-IoT.2014.6803139

Gregory Maus. 2015. Decoding, hacking, and optimizing societies: Exploring potential applications of human data analytics in sociological engineering, both internally and as offensive weapons. In Proceedings of the 2015 Science and Information Conference, SAI 2015. 538–547. DOI: 10.1109/SAI.2015.7237195

Fernando S. Meirelles. 2022. Pesquisa do Uso da TI Tecnologia de Informação Panorama e Indicadores. Technical Report. Centro de Tecnologia de Informação Aplicada.

Richard Mortier, Hamed Haddadi, Tristan Henderson, Derek Mcauley, Jon Crowcroft, and Andy Crabtree. 2016. Human-Data Interaction. The Encyclopedia of Human-Computer Interaction (2016), 1–48. [link]

Patrick Murmann and Simone Fischer-Hübner. 2017. Tools for Achieving Usable Ex Post Transparency: A Survey. IEEE Access 5 (2017), 22965–22991. DOI: 10.1109/ACCESS.2017.2765539

J. F.A. Murphy. 2018. The General Data Protection Regulation (GDPR). Irish Medical Journal 111 (2018), 747. Issue 5. DOI: 10.1145/3170427.3170632

Teresa A O’Sullivan and Curtis G Jefferson. 2020. A review of strategies for enhancing clarity and reader accessibility of qualitative research results. Am. J. Pharm. Educ. 84, 1 (Jan. 2020), 7124. DOI: 10.5688%2Fajpe7124

Federica Paci, Anna Squicciarini, and Nicola Zannone. 2018. Survey on Access Control for Community-Centered Collaborative Systems. ACM Comput. Surv. 51, 1 (Jan. 2018), 6:1–6:38. DOI: 10.1145/3146025

K.K. Ramachandran, A. Apsara Saleth Mary, Shibani Hawladar, D. Asokk, Bandi Bhaskar, and J.R. Pitroda. 2022. Machine learning and role of artificial intelligence in optimizing work performance and employee behavior. Materials Today: Proceedings 51 (2022), 2327–2331. DOI: 10.1016/j.matpr.2021.11.544 International Conference on Advances in Materials Science.

Maria Rigaki and Sebastian Garcia. 2023. A survey of privacy attacks in machine learning. Comput. Surveys 56, 4 (2023), 1–34. DOI: 10.1145/3624010

Kamila Rios da Hora Rodrigues, Luiz Paulo Carvalho, Maria da Graça C. Pimentel, and André Pimenta Freire. 2024. GranDIHC-BR 2025-2035 GC2: Ethics and Responsibility: Principles, Regulations, and Societal Implications of Human Participation in HCI Research. In Proceedings of the XXIII Brazilian Symposium on Human Factors in Computing Systems (IHC ’24). ACM, New York, NY, USA.

Antoinette Rouvroy and Yves Poullet. 2009. The Right to Informational SelfDetermination and the Value of Self-Development: Reassessing the Importance of Privacy for Democracy. In Reinventing Data Protection?, Serge Gutwirth, Yves Poullet, Paul De Hert, Cécile de Terwangne, and Sjaak Nouwt (Eds.). Springer Netherlands, Dordrecht, 45–76.

André de Lima Salgado, Patrick C. K. Hung, and Renata P. M. Fortes. 2024. Six usable privacy heuristics. In Proceedings of the XXII Brazilian Symposium on Human Factors in Computing Systems (Maceió, Brazil) (IHC ’23). Association for Computing Machinery, New York, NY, USA, Article 43, 11 pages. DOI: 10.1145/3638067.3638111

Alfredo Salomão Filho, Barbara Wasson, Petros Lameras, and Ruth Maloszek. 2023. Data literacy for citizenry: A few policy recommendations from a literature review. Edutec Rev. Electrón. Tecnol. Educ. 86 (Dec. 2023), 6–21. DOI: 10.21556/edutec.2023.86.2877

Patrick Santos, Luciana Salgado, and José Viterbo. 2018. Assessing the Communicability of Human-Data Interaction Mechanisms in Transparency Enhancing Tools. In Proceedings of the 2018 Federated Conference on Computer Science and Coleti, et al. Information Systems, Vol. 15. 897–906. DOI: 10.15439/2018f174

Juliana Saraiva and Sergio Soares. 2023. Adoption of the LGPD Inventory in the User Stories and BDD Scenarios Creation. In Anais do XXXVII Simpósio Brasileiro de Engenharia de Software (Campo Grande/MS). SBC, Porto Alegre, RS, Brasil, 416–421. [link]

Iqbal H. Sarker, Asif Irshad Khan, Yoosef B. Abushark, and Fawaz Alsolami. 2022. Internet of Things (IoT) Security Intelligence: A Comprehensive Overview, Machine Learning Solutions and Research Directions. Mob. Netw. Appl. 28, 1 (mar 2022), 296–312. DOI: 10.1007/s11036-022-01937-3

M. A. Sasse and M. Smith. 2016. The Security-Usability Tradeoff Myth [Guest editors’ introduction]. IEEE Security Privacy 14, 5 (Sept. 2016), 11–13. DOI: 10.1109/MSP.2016.102

F. Schaub, R. Balebako, and L. F. Cranor. 2017. Designing Effective Privacy Notices and Controls. IEEE Internet Computing 21, 3 (May 2017), 70–77. DOI: 10.1109/MIC.2017.75

Patrick Schramowski, Wolfgang Stammer, Stefano Teso, Anna Brugger, Franziska Herbert, Xiaoting Shao, Hans-Georg Luigs, Anne-Katrin Mahlein, and Kristian Kersting. 2020. Making deep neural networks right for the right scientific reasons by interacting with their explanations. Nature Machine Intelligence 2, 8 (2020), 476–486. DOI: 10.1038/s42256-020-0212-3

Keng Siau and Weiyu Wang. 2020. Artificial intelligence (AI) ethics: ethics of AI and ethical AI. Journal of Database Management (JDM) 31, 2 (2020), 74–87.

Jeremiah D. Still. 2016. Cybersecurity Needs You! interactions 23, 3 (April 2016), 54–58. DOI: 10.1145/2899383

Syeda Manjia Tahsien, Hadis Karimipour, and Petros Spachos. 2020. Machine learning based solutions for security of Internet of Things (IoT): A survey. Journal of Network and Computer Applications 161 (2020), 102630. DOI: 10. 1016/j.jnca.2020.102630

Davide Taibi, Luis Fernandez-sanz, Vera Pospelova, Manuel Leon-urrutia, Ugljesa Marjanovic, Sergio Splendore, and Laimute Urbisiene. 2023. Developing Data Literacy Competences at University : the experience of the DEDALUS project. Proceedings of 1st Conference on Online Teaching for Mobile Education (OT4ME) 1 (2023), 112–113.

The European Parliament and the Council of the European Union. 2016. REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

Simona Tiribelli. 2024. Who decides what online and beyond: freedom of choice in predictive machine-learning algorithms. In Ethics in Online AI-based Systems. Elsevier, 299–321. DOI: 10.1016/B978-0-443-18851-0.00012-3

Mariana D E Toledo. 2020. Lei Geral de Proteção de Dados. um guia completo. , 32 pages.

Eliane Zambon Victorelli, Julio Cesar Dos Reis, Heiko Hornung, and Alysson Bolognesi Prado. 2020. Understanding human-data interaction: Literature review and recommendations for design. International journal of humancomputer studies 134 (2020), 13–32. DOI: 10.1016/j.ijhcs.2019.09.004

M Vimalkumar, Sujeet Kumar Sharma, Jang Bahadur Singh, and Yogesh K Dwivedi. 2021. ‘Okay google, what about my privacy?’: User’s privacy perceptions and acceptance of voice based digital assistants. Computers in Human Behavior 120 (2021), 106763. DOI: 10.1016/j.chb.2021.106763

Yuntao Wang, Zhou Su, Ning Zhang, Rui Xing, Dongxiao Liu, Tom H Luan, and Xuemin Shen. 2022. A survey on metaverse: Fundamentals, security, and privacy. IEEE Communications Surveys & Tutorials 25, 1 (2022), 319–352. DOI: 10.1109/COMST.2022.3202047

Rick Wash and Mary Ellen Zurko. 2017. Usable Security. IEEE Internet Computing 21, 3 (May 2017), 19–21. DOI: 10.1109/MIC.2017.69

Yi Wu. 2023. Data Governance and Human Rights: An Algorithm Discrimination Literature Review and Bibliometric Analysis. Journal of Humanities, Arts and Social Science 7 (2023), 128–154. DOI: DOI:10.26855/jhass.2023.01.018

Rodrigo Oliveira Zacarias, Rodrigo Feitosa Gonçalves, and Rodrigo Pereira dos Santos. 2023. Investigating Transparency in Software Ecosystems. In Proceedings of the XXXVII Brazilian Symposium on Software Engineering (Campo Grande, Brazil) (SBES ’23). Association for Computing Machinery, New York, NY, USA, 132–141. DOI: 10.1145/3613372.3613386

Eric Zeng, Shrirang Mare, and Franziska Roesner. 2019. End user security & privacy concerns with smart homes. In Proceedings of the 13th Symposium on Usable Privacy and Security, SOUPS 2017. 65–80.

Annette Zimmermann, Elena Di Rosa, and Hochan Kim. 2020. Technology can’t fix algorithmic injustice. Boston Review 9 (2020).