PRIVACY DESIGN FORECAST 2019: Bridging privacy policy with product design

A collection of conceptual ideas on privacy by design and meaningful informed consent

The Shorenstein Center on Media, Politics and Public Policy reached out to academics, design experts, and consumer advocates who are leading thinkers and practitioners in promoting privacy enhancing technologies. This website is a collection of their ideas on ways to build privacy into products and systems.

How might organizations and legislators collaborate to better translate aspirational privacy principles to product design and development?

There is a gap between translating privacy regulation to technology created by engineers and designers. Conversely, there is a gap between understanding how products work and how data is collected, maintained, and safeguarded that leads to the creation of ineffective public policy. This project aims to build bridges connecting these communities of practice.


Peter Dolanjski, Product Lead, Firefox

Understandable Browser Privacy Controls

Aligning browser privacy defaults and controls with user expectations



Pardis Emami-Naeini, PhD candidate, Carnegie Mellon University
Yuvraj Agarwal, Assistant Professor, Carnegie Mellon University
Lorrie Faith Cranor, Professor, Carnegie Mellon University

Privacy and Security Nutrition Label for Smart Devices

Our privacy and security label is a tool designed to help consumers make informed purchase decisions for smart devices at the point of sale.

Feature image (1).png


Jasmine McNealy, Fellow – Berkman Klein Center for Internet & Society; Assistant Professor – University of Florida

Threat Index: helping users assess personal data risk

Users must be able to understand the risk associated with personal data collection



Glenn Sorrentino, Principal UX Designer, Salesforce

Municipal Privacy Alerts

An actionable, real-time push notification-based system that informs users about privacy-diminishing technologies in their area

Group 9.png


Meg Leta Jones, Sydney Luken, Jonathan Healey: Ethics Lab, Georgetown University

My Terms of Service Button


button on.jpg


Soraya Okuda, Education and Design Lead, Electronic Frontier Foundation (EFF)

Visualizing how the Internet works to present user data

Aligning user’s conceptual models of where their data moves, and who has access to it



Vanessa Barone, Research Scientist, Sage Bionetwork

Woody MacDuffie, Director of Design, Sage Bionetworks

Yini Guan, Graduate student and Design Intern, University of Washington and Sage Bionetworks

Stockard Simon, Designer, Sage Bionetworks

The Privacy Toolkit for Mobile Health Research Studies

Providing biomedical researchers with a catalog of privacy design patterns for their digital studies.



Morgan Klaus Scheuerman, Information Science PhD Student, University of Colorado Boulder

Facial Confirmation System: Enabling Users to Opt-In and Customize Information about Themselves in Facial Classification Technology

Imagining what user consent and autonomy looks like in commercial facial analysis applications that use facial detection and classification for personalized recommendation.


Team members analyzing interviews after a round of research. Photo by Xena Ni.

Team members analyzing interviews after a round of research. Photo by Xena Ni.

Makaela Stephens, Designer/Researcher, Nava Public Benefit Corporation
Kelli Ho, Designer/Researcher, Nava Public Benefit Corporation

Plain language templates for government agencies to share privacy policies during user research

Use these open source templates and a step-by-step checklist to ensure you're putting the proper safeguards in place to protect data you collect while doing user research.



Hamsini Sridharan, Program Director, MapLight

Illuminating Dark Ads

Maximizing public transparency and user control for microtargeted advertising

image001 (1).jpg


Erika Harano, Grant Chinn, Boaz Sender, Website working group, Design Justice Network
Una Lee, Steering Committee Member, Design Justice Network
Director, Consentful Tech Project

FRIES: What good consent looks like in sign-up processes

Applying a comprehensive framework for consent to web forms through reversibility, clear language, and respect for a user’s decision not to consent.

3 Consent.png


Lucy Van Kleunen, PhD Student, University of Colorado Boulder

Stephen Voida, Professor, University of Colorado Boulder

Controlling Disclosure of Personal Health Data

Features that improve how patients with chronic disease manage access to personal health data from self-tracking applications

FeatureImage (1).png


Ame Elliott, Design Director; Simply Secure
Sara “Scout” Brody
, Former Executive Director; Simply Secure
Georgia Bullen
, Executive Director; Simply Secure
Eileen Wagner
, Program Manager; Simply Secure
Molly Wilson
, Senior Designer & Researcher; Simply Secure

Participant Bill of Rights

Balancing the Power Dynamic between users and companies or researchers



Grace Annan-Callcott, Press Officer, Projects by IF

Collecting design patterns for teams to make more ethical decisions about data

People designing and building services are in a position of power. IF created and open sourced the Data Permissions Catalogue to help product teams make better, more ethical decisions about data and AI.



Caroline Sinders, Fellow, The Mozilla Foundation + Visiting Fellow, digital HKS

Data Ingredients: A Provocation Towards Making Algorithms Human Readable

We need warning labels that are easy to understand for products using AI, machine learning and algorithms, the same way we have caloric information or ingredients in food products.

Screen Shot 2019-02-24 at 6.33.17 PM.png


Andrew Lovett-Barron, Founder, KNOWSI

Managing the consent relationship between researchers and their participants

Knowsi is a consent management tool for creatives that provides agency over media, data, and consent between those collecting the information, and those providing it.



Becca Ricks, Research Associate, Mozilla Foundation

Designing for meaningful consent in app permissions

A proof of concept that demonstrates how design can inform how consent to data collection is given during the onboarding process and how consent can be revoked

Screen Shot 2019-03-04 at 6.04.18 PM.png


Hervé Mischler, Director, Salesforce Office of Innovation

Karen Semone, Senior Director, Salesforce Office of Innovation

Consumer-Controlled Data Profile

See and update your personal data in one secure universal profile, to share and manage how brands know you

Screen Shot 2019-03-05 at 9.38.13 AM.png


YASMINA LÓPEZ, Service Designer at Fjord Madrid, Senior Fellow supporting the Usability and Design within the Secure Program at @SimplySecure & @OpentechFund

Rethinking the user data agreement experience

A toolkit and the guidance needed to go through the service design thinking methodology to come up with an open source and meaningful solution that will help users and citizens to safeguarding their data rights when using a product or service.



Marla Hay, Director of Product, Salesforce

Just In Time Consent

Just-in-time consent is the concept of requesting permission for data use at the time that is most relevant in order to ensure the user understands the request, the exchange for value, and is able to most effectively exert control over their data.

Screen Shot 2019-02-24 at 6.14.40 PM.png


Jennifer Ding, IDEO CoLab Fellow, Solutions Engineer at Numina
Audrey Levy, IDEO CoLab Fellow, Industrial Design student at the University of Washington
Fahad Punjwani, IDEO CoLab Fellow, Creative Director at SUCH

Educating Consumers to Securely Store Crypto-key via a Comic Strip

Cryptocurrencies open a wealth of new opportunities for asset holders...but today they also place the responsibility of security in the hands of privacy-conscious users, who choose to contend with the challenge of managing their own keys instead of saving them with a third party. A Crypto-Comic Adventure focuses on demystifying an integral part of blockchain transactions—storing and retrieving public and private keys - through a personal approach.

Screen Shot 2019-04-17 at 9.57.06 PM.png

Bridging privacy policy with Product Design