July 10, 2024

The Cost of Managing Your Privacy

As the privacy reform debate continues in Australia, a familiar concern about the burden of regulation on businesses rings through various consultation processes. But a crucial question often goes unasked: what is it costing Australian consumers?

This report:

Download Full Report

Our research reveals the time and effort required to manage digital privacy has become an overwhelming burden for Australians.

There is a hidden cost to the current privacy framework,  impacting on consumers’ time, understanding, and ultimately, their right to privacy online.

Key findings

Time is required

Privacy policies are often lengthy

Some of the longest privacy policies were being in excess of 300,000  words.

icon

0

words

And difficult to understand

Hidden privacy settings

icon

45% of participants struggled to locate and adjust privacy settings.

Commonly used websites and apps make it difficult to change privacy settings

Sites or apps that took the most time to find and action a change to privacy settings included:

icon

Todoist

icon

Google

icon

Binge

icon

The Iconic

icon

Mamamia

The five longest privacy and cookie policies included:

icon

1. Microsoft

90,119 words

icon

2. Meta

36,759 words

icon

3. Whatsapp

15,280 words

icon

4. New York Times

12,962 words

icon

5. X (formerly Twitter)

12,622 words

Recommendations

While businesses can quantify regulatory costs, the burden on consumers often goes unaccounted for. Our research consistently reveals a stark mismatch between community expectations and current data practices.

This privacy sweep demonstrates why privacy protection shouldn’t solely rest on individual shoulders. Based on our findings, CPRC recommends the Federal Government take the following measures:

icon
Modernise what it means to be identifiable to cover information obtained from any source and by any means.
icon
Implement genuine privacy by default measures instead of placing the onus on consumers to opt-out of settings that are not designed with their interests in mind.
icon
Require all businesses to assess and ensure how they collect and use data leads to fair and safe outcomes that are in the interests of their customers and the community
icon
Empower and adequately resource the regulator to swiftly ban or restrict harmful practices that cause direct and clear consumer harms.
icon
Provide a clear pathway for redress and support when things go wrong.

Where to from here?

CPRC welcomes the opportunity to work further on this issue with government, regulators, policy makers, academia and the community sector. 

If you are in one the above groups and would like a one-on-one briefing for your organisation, contact our team today. 

Links

Book a Briefing

Other reports

Newsletter sign-up

This field is for validation purposes and should be left unchanged.
Skip to content