The OPI design was discovered by applying research and theory from the fields of psychology, linguistics, computer science and mathematics to a careful analysis of privacy notices. The resulting ontology has thus been validated across 100 privacy notices and over 4,000 information type phrases. Below, we review the OPI design and review the theoretical foundation that was used to realize this design.
Concepts in the OPI are organized into two broad categories:
| Concepts of Physical Things: this category includes sub-categories for entities, events, actions, and agents, such as webpages, site visits, and users | Concepts of Information Types: this category is divided into two sub-categories:
|
Basic level categories are "information-rich bundles" of things perceived by humans that are grouped by shared "perceptual and functional attributes that form natural discontinuities" [1]. By "discontinuities" we mean these attributes are prominent among the members of the group, and thus distinguish this group from other groups. The basic level category for furniture, for example, distinguishes the attributes of chairs, tables and desks from the category of vehicles.
In the OPI, all concepts of physical things and some concepts of information types are organized into basic level categories. We primarily rely on policy authors to identify basic level categories. Many policies refer to the user, which serves as a basic level category that includes account user and visiting user as sub-categories. In addition, policies refer to user information as a category of information about various types of users. User information may include other information types, such as a user's name, alias, e-mail address, and so on.
Ad hoc categories are created by people for a specific purpose or goal and, unlike basic level categories, members of an ad hoc category are not grouped by shared attributes. The ad hoc category "things to sell at a garage sale" organizes its membership around the purpose "to sell at a garage sale." Ad hoc categories further differ from basic level categories in that they do not exhibit the same graded structure, and do not have the same well established representation in memory [2].
In the OPI, some concepts of information types are ad hoc categories. These categories are described as "information about [thing]" where [thing] is a concept of a physical thing. When a synonymous basic level category exists for an ad hoc category in the concept of information types, then these two categories will be equivalent. For example, the ad hoc category “information about a user” is equivalent to user information and also describes a user.
The OPI was constructed using a multistep process that began with crowdworkers annotating information types [3, 4, 5] in over 100 privacy notices. The policies were selected to represent over 20 different domains and service types, including companies that provide frontend and backend services, and that have both online and brick-and-mortar stores. The domains covered include health, finance, shopping, social media, telecommunications, and travel, among others.
In addition to information types found in privacy policies, information types may be inferred using one of three methodologies:
| [1] | Rosch, Eleanor (1978) "Principles of Categorization." In Rosch, Eleanor and Lloyd, Barbara B. (eds), Cognition and categorization 27-48. Hillsdale, NJ: Lawrence Erlbaum. |
| [2] | Barsalou, Lawrence W. (1983) "Ad hoc categories." Memory & Cognition, Volume 11, pages 211–227. doi: 10.3758/BF03196968 |
| [3] | Bhatia, Jaspreet, and Breaux, Travis D. (2015) "Towards an information type lexicon for privacy policies," 2015 IEEE Eighth International Workshop on Requirements Engineering and Law (RELAW), Ottawa, ON, Canada, 2015, pp. 19-24, doi: 10.1109/RELAW.2015.7330207. |
| [4] | Bhatia, Jaspreet, Breaux, Travis D., and Schaub, Florian. (2016). Mining Privacy Goals from Privacy Policies Using Hybridized Task Recomposition. ACM Trans. Softw. Eng. Methodol. 25, 3, Article 22 (August 2016), 24 pages. doi: 10.1145/2907942 |
| [5] | Breaux, Travis D, Schaub, Florian (2014). "Scaling requirements extraction to the crowd: Experiments with privacy policies." IEEE International Requirements Engineering Conference, pp. 163-172. doi: 10.1109/RE.2014.6912258 |
| [6] | Bokaei Hosseini, Mitra, Breaux, Travis D., Slavin, Rocky, Niu, Jianwei, Wang, Xiaoyin (2021). "Analyzing privacy policies through syntax-driven semantic analysis of information types," Information and Software Technology, Volume 138, doi: 10.1016/j.infsof.2021.106608. |
| [7] | M. B. Hosseini, J. Heaps, R. Slavin, J. Niu and T. Breaux, "Ambiguity and Generality in Natural Language Privacy Policies," 2021 IEEE 29th International Requirements Engineering Conference (RE), Notre Dame, IN, USA, 2021, pp. 70-81, doi: 10.1109/RE51729.2021.00014. |
| [8] | Bokaei Hosseini, M., Slavin, R., Breaux, T., Wang, X., Niu, J. (2020). Disambiguating Requirements Through Syntax-Driven Semantic Analysis of Information Types. In: Madhavji, N., Pasquale, L., Ferrari, A., Gnesi, S. (eds) Requirements Engineering: Foundation for Software Quality. REFSQ 2020. Lecture Notes in Computer Science(), vol 12045. Springer. doi: 10.1007/978-3-030-44429-7_7 |
| [9] | Bokaei Hosseini, M., Breaux, T.D., Niu, J. (2018). Inferring Ontology Fragments from Semantic Role Typing of Lexical Variants. In: Kamsties, E., Horkoff, J., Dalpiaz, F. (eds) Requirements Engineering: Foundation for Software Quality. REFSQ 2018. Lecture Notes in Computer Science(), vol 10753. Springer. 10.1007/978-3-319-77243-1_3 |
| [10] | Evans, Morgan C., Bhatia, Jaspreet, Wadkar, Sudarshan, Breaux, Travis D. (2017). "An Evaluation of Constituency-Based Hyponymy Extraction from Privacy Policies." IEEE 25th International Requirements Engineering Conference (RE), pages 312-321, doi: 10.1109/RE.2017.87 |