Yan Leng,Yijun Chen,Xiaowen Dong,Junfeng Wu,Guodong Shi

DOI: https://doi.org/10.2139/ssrn.3875878

2021-01-01

SSRN Electronic Journal

Abstract:There exists a growing concern about the privacy threats inherently encoded in the increasingly available behavioral data. In this paper, we focus on online service providers over which users reveal preferences (e.g., ratings or reviews) as publicly available behavioral data. We model users' strategic interactions in making these decisions as quadratic games on networks, where a user's payoff depends not only on their actions but also on their neighbors in a social interaction network. Based on the assumption that the observed preferences correspond to the Nash equilibrium of the game, we investigate whether eavesdroppers or competitors having access to such behavioral data could potentially infer or even thoroughly learn the hidden social interaction network from the observed user actions, leading to privacy risks at a system level for the platform. We introduce three notions of privacy risks on networks: fundamental privacy, conditional privacy, and practical privacy. We establish necessary and sufficient conditions for fundamental and conditional privacy of the social interaction structure, suggesting that at the system level, such interaction structure is not facing a critical risk of being fully exposed regardless of the amount of data available. To study practical privacy, we further propose and analyze a novel learning framework by solving a joint optimization problem for the network structure and the individual marginal benefits in the game. Extensive experiments on synthetic and real-world data demonstrate the effectiveness of the proposed framework, hence illustrating that behavioral data indeed present substantial privacy risks in practice. Broadly, this study enriches the network privacy literature and provides implications for online platforms by revealing the unexpected consequence of leaking network connections due to public consumer revealed preferences.

Jay Pil Choi,Doh-Shin Jeon,Byung-Cheol Kim

DOI: https://doi.org/10.2139/ssrn.3115049

2018-01-01

SSRN Electronic Journal

Abstract:We provide a theoretical model of privacy in which data collection requires consumers' consent and consumers are fully aware of the consequences of such consent. Nonetheless, excessive collection of personal information arises in the monopoly market equilibrium which results in excessive loss of privacy compared to the social optimum. In a fragmented market with a continuum of firms, no individual website has incentives to collect and monetize users' personal data in the presence of scale economies in data analytics. However, the emergence of data brokerage industry can restore these incentives. Our results have important policy implications for the ongoing debate regarding online privacy protection: excessive loss of privacy emerges even with costless reading and perfect understanding of all privacy policies. We support the view that privacy is a public good and propose alternative policy remedies beyond the current informed-consent approach.

English Else

Xin Zhang,Hong Xu,Wei Thoo Yue,Yugang Yu

DOI: https://doi.org/10.2139/ssrn.4163335

2022-01-01

Abstract:Many online platforms adopt the ad-sponsored business model, which involves offering free services to consumers while collecting their data and selling targeted advertising space to advertisers. However, collecting consumer data has raised growing privacy concerns, which may affect consumers’ homing behavior, i.e., using one platform (i.e., single homing) or multiple platforms (multihoming). This study develops a game-theoretic model to examine how consumer privacy concerns affect platform competition on the advertiser side by focusing on advertising prices, advertiser demand, and platform profits. Our model allows both consumers and advertisers to choose single homing or multihoming endogenously. Our results show that growing privacy concerns can allow platforms to increase their prices because higher privacy concerns can lead to more single homing consumers, who are of higher value to advertisers. Furthermore, we find that the impact of privacy concerns on advertiser demand and platform profits depends on the substitutability of platforms’ targeting capabilities. Surprisingly, even when higher privacy concerns lead to fewer single homing consumers, platforms can attract more advertiser demand and achieve higher profits if they offer highly differentiated targeting options. Finally, we consider the case where platforms use exclusive contracts to lock in advertisers. Counter to the intuition that exclusive contracts tend to favor large platforms, we show that small platforms with lower targeting capability are more likely to benefit. We discuss relevant managerial and theoretical implications.

T. Tony Ke,K. Sudhir

DOI: https://doi.org/10.1287/mnsc.2022.4614

IF: 5.4

2022-12-04

Management Science

Abstract:General Data Protection Regulation (GDPR)—the European Union’s data protection regulation—has two key principles. It recognizes that individuals own and control their personal (but not contractual) data in perpetuity, leading to three critical privacy rights, namely, the rights to (i) explicit consent (data opt-in), (ii) to be forgotten (data erasure), and (iii) portability (data transfer). It also includes data security mandates against privacy breaches through unauthorized access. We study GDPR’s equilibrium impact by including these features in a dynamic two-period model of forward-looking firms and consumers. Firms collect consumer data for personalization and price discrimination. Consumers trade off gains from personalization relative to potential losses from privacy breaches and price discrimination in their purchase, data opt-in, erasure, and transfer decisions. Though data security mandates impose fines on firms for privacy breaches, firms can benefit from higher opt-in given lower breach risk. Surprisingly, data security mandates can hurt consumers. The effect of privacy rights is nuanced. Since the right to opt in separates goods exchange from the provision of personal data, it prevents market failure under high breach risk. But it also reduces consumer opt-in and personal data availability. Erasure and portability rights reduce consumers’ hold-up concerns by disciplining firms to provide ongoing value by limiting price discrimination and not slacking off on data security; but they also reduce the incentive to offer lower initial prices that encourages opt-in. Overall, privacy rights always benefit consumers in competitive markets, but they can surprisingly hurt consumers under monopoly, as monopolists have less incentives to subsidize consumer opt-in. They raise (reduce) firm profit and social welfare when breach risk is high (low). Finally, privacy rights increase firm profit most at moderate levels of data transferability. This paper was accepted by Dmitri Kuksov, marketing. Funding: T. T. Ke acknowledges financial support from the General Research Fund of the Hong Kong Research Grants Council [Grant 14500421]. Supplemental Material: The e-companion is available at https://doi.org/10.1287/mnsc.2022.4614 .

management,operations research & management science

Rachel Cummings,Katrina Ligett,Mallesh M. Pai,Aaron Roth

DOI: https://doi.org/10.1145/2940716.2940740

2016-07-21

Abstract:We study how privacy technologies affect user and advertiser behavior in a simple economic model of targeted advertising. In our model, a consumer first decides whether or not to buy a good, and then an advertiser chooses an advertisement to show the consumer. The consumer's value for the good is correlated with her type, which determines which ad the advertiser would prefer to show to her---and hence, the advertiser would like to use information about the consumer's purchase decision to target the ad that he shows. In our model, the advertiser is given only a differentially private signal about the consumer's behavior---which can range from no signal at all to a perfect signal, as we vary the differential privacy parameter. This allows us to study equilibrium behavior as a function of the level of privacy provided to the consumer. We show that this behavior can be highly counter-intuitive, and that the effect of adding privacy in equilibrium can be completely different from what we would expect if we ignored equilibrium incentives. Specifically, we show that increasing the level of privacy can actually increase the amount of information about the consumer's type contained in the signal the advertiser receives, lead to decreased utility for the consumer, and increased profit for the advertiser, and that generally these quantities can be non-monotonic and even discontinuous in the privacy level of the signal.

Shota Ichihashi

DOI: https://doi.org/10.2139/ssrn.3112905

2018-01-01

SSRN Electronic Journal

Abstract:I study the welfare and price implications of consumer privacy. A consumer discloses information to a multi-product seller, which learns about his preferences, sets prices, and makes product recommendations. Although the consumer benefits from accurate recommendations, the seller may use the information to price discriminate. I show that the seller prefers to commit to not use information for pricing in order to encourage information disclosure. However, this commitment hurts the consumer, who could be better off by precommitting to withhold some information. In contrast to single-product models, total surplus may be lower if the seller can base prices on information.

Jiajia Cong,Noriaki Matsushima

DOI: https://doi.org/10.2139/ssrn.4381885

2023-01-01

SSRN Electronic Journal

Abstract:This study examines how consumers' personal data management affects firms' competition in the data collection and data application markets and welfare outcomes. Consumers purchase products from differentiated firms in two markets. Firms compete to collect consumer data first to predict their preferences in the data application market, where each firm offers personalized prices to its targeted consumers and a uniform price to untargeted consumers. Before firms offer prices, their targeted consumers can erase data to become untargeted for a fixed cost. We show that consumers' privacy management mitigates price competition, reduces firms' profits, and harms consumer surplus and social welfare in the data application market; privacy management intensifies competition and improves consumer surplus in the data collection market. Across these two markets, profits and social welfare decline. The change in consumers' two-market surplus depends on their foresight regarding the outcomes in the data application market, with only forward-looking consumers having a higher surplus. We extend the model in several directions, including data-enabled product personalization, privacy costs, data portability, and data ownership, and discuss the implications for privacy laws.

V. Bhaskar,Nikita Roketskiy

DOI: https://doi.org/10.1111/1756-2171.12396

2021-12-01

The RAND Journal of Economics

Abstract:We examine the implications of consumer privacy when preferences today depend upon past consumption choices, and consumers shop from different sellers in each period. Although consumers are ex ante identical, their initial consumption choices cannot be deterministic. Thus, ex post heterogeneity in preferences arises endogenously. Consumer privacy improves social welfare, consumer surplus and the profits of the second‐period seller, while reducing the profits of the first period seller, relative to the situation where consumption choices are observed by the later seller.

Ranjan Pal,Junhui Li,Jon Crowcroft,Yong Li,Mingyan Liu,Nishanth Sastry

DOI: https://doi.org/10.1109/tnsm.2020.3046704

2020-01-01

IEEE Transactions on Network and Service Management

Abstract:ln-app advertising is a multi-billion dollar industry that is an essential part of the current digital ecosystem, and is amenable to sensitive consumer information often being sold downstream without the knowledge of consumers, and in many cases to their annoyance. While this practice, in cases, may result in long-term benefits for the consumers, it can result in serious information privacy (IP) breaches of very significant impact (e.g., breach of genetic data) in the short term. The question we raise through this article is: does the type of information being traded downstream play a role in the degree of IP risks generated? We investigate two general (one-many) information trading market structures between a single data aggregating seller (e.g., enterprise app) and multiple competing buyers (e.g., ad-networks, retailers), distinguished by mutually exclusive and privacy sanitized aggregated consumer data (information) types: (i) data entailing strategically complementary actions among buyers and (ii) data entailing strategically substituting actions among buyers. Our primary question of interest here is: trading which type of data might pose less information privacy risks for society? To this end, we show that at market equilibrium IP trading markets exhibiting strategic substitutes between buying firms pose lesser risks for IP in society, primarily because the 'substitutes' setting, in contrast to the 'complements' setting, economically incentivizes appropriate consumer data distortion by the seller in addition to restricting the proportion of buyers to which it sells. Moreover, we also show that irrespective of the data type traded by the seller, the likelihood of improved IP in society is higher if there is purposeful or free-riding based transfer/leakage of data between buying firms. This is because the seller finds itself economically incentivized to restrict the release of sanitized consumer data with respect to the span of its buyer space, as well as in improved data quality.

Jose Higueras

2023-05-10

Abstract:In this paper I study how to regulate firms' access to consumer data when the latter is used for price discrimination and the regulator faces non-Bayesian uncertainty about the correlation structure between data and willingness to pay, and hence about the way the monopolist will use the consumers' information to segment the market. I fully characterize all policies that are worst-case optimal when the regulator maximizes consumer surplus: the regulator allows the monopolist to access data if the monopolist cannot use the database to identify a small group of consumers. Furthermore, from the set of policies that achieve the largest worst-case consumer surplus, I identify the ones that are undominated; i.e., there is no alternative policy that never yields lower consumer surplus, and sometimes strictly higher consumer surplus.

Theoretical Economics

Dirk Bergemann,Alessandro Bonatti

DOI: https://doi.org/10.48550/arXiv.2304.07653

2023-04-16

Abstract:We analyze digital markets where a monopolist platform uses data to match multiproduct sellers with heterogeneous consumers who can purchase both on and off the platform. The platform sells targeted ads to sellers that recommend their products to consumers and reveals information to consumers about their values. The revenue-optimal mechanism is a managed advertising campaign that matches products and preferences efficiently. In equilibrium, sellers offer higher qualities at lower unit prices on than off the platform. Privacy-respecting data-governance rules such as organic search results or federated learning can lead to welfare gains for consumers.

Theoretical Economics

Ram D. Gopal,Hooman Hidaji,Sule Nur Kutlu,Raymond A. Patterson,Niam Yaraghi

DOI: https://doi.org/10.1287/isre.2022.1178

IF: 4.9

2023-02-16

Information Systems Research

Abstract:Widespread abuse of internet users' privacy online has prompted user advocacy groups to implore governments to intervene and protect consumer rights. To study such interventions' effects, we examine data-protection policies that policy makers and governments can enforce on websites, including consent-based user information sharing and subsidizing competing websites. Interestingly, we find that even though a consent-based policy may improve user surplus, it has the unintended consequence of increasing the number of third-parties and, thus, sharing of user information. We also determine that both consent-based and website subsidization policies may reduce competition by driving websites out of the market—to the detriment of user surplus and social welfare. Moreover, consent-based policies are not beneficial to websites, but are beneficial for third-parties. Policy makers should consider the different policy mechanisms at their disposal. Website subsidization is similar to a scalpel, enabling them to sculpt around and impact specific target markets. Consent-based policies are more comparable to a sledgehammer that uniformly affects all market segments. For circumstances where it is difficult for the government to enact a law for the entire market, website subsidization policies may be appealing alternatives, as they may yield higher user surplus than consent-based policies.

information science & library science,management

Zhuang Liu,Michael Sockin,Wei Xiong

DOI: https://doi.org/10.2139/ssrn.4448301

2023-01-01

SSRN Electronic Journal

Abstract:This paper develops a foundation for a consumer's preference for data privacy by linking it to the desire to hide behavioral vulnerabilities. Data sharing with digital platforms enhances the matching efficiency for standard consumption goods, but also exposes individuals with self-control issues to temptation goods. This creates a new form of inequality in the digital era—algorithmic inequality. Although data privacy regulations provide consumers with the option to opt out of data sharing, these regulations cannot fully protect vulnerable consumers because of data-sharing externalities. The coordination problem among consumers may also lead to multiple equilibria with drastically different levels of data sharing by consumers. Our quantitative analysis further illustrates that although data is non-rival and beneficial to social welfare, it can also exacerbate algorithmic inequality.Institutional subscribers to the NBER working paper series, and residents of developing countries may download this paper without additional charge at www.nber.org.

Alessandro Acquisti,Curtis R. Taylor,Liad Wagman

DOI: https://doi.org/10.2139/ssrn.2580411

2015-01-01

SSRN Electronic Journal

Abstract:This article summarizes and draws connections among diverse streams of theoretical and empirical research on the economics of privacy. We focus on the economic value and consequences of protecting and disclosing personal information, and on consumers' understanding and decisions regarding the trade-offs associated with the privacy and the sharing of personal data. We highlight how the economic analysis of privacy evolved over time, as advancements in information technology raised increasingly nuanced and complex issues associated with the protection and sharing of personal information. We find and highlight three themes that connect diverse insights from the literature. First, characterizing a single unifying economic theory of privacy is hard, because privacy issues of economic relevance arise in widely diverse contexts. Second, there are theoretical and empirical situations where the protection of privacy can both enhance, and detract from, individual and societal welfare. Third, in digital economies, consumers' ability to make informed decisions about their privacy is severely hindered, because consumers are often in a position of imperfect or asymmetric information regarding when their data is collected, for what purposes, and with what consequences. We conclude the article by highlighting some of the ongoing issues in the privacy debate of interest to economists.

English Else

Stefano Dughera,Marco Giraudo

DOI: https://doi.org/10.2139/ssrn.3624711

2020-01-01

SSRN Electronic Journal

Abstract:We develop a social custom model where a population of consumers interact through a social media supplied by a single provider, who optimally selects the quantity of information she gathers from her users. In the economy, privacy rights in online-interactions are incomplete, and so are the notice-and-consent contracts regulating the terms and conditions of service. Hence, the lawfulness of data-gathering activities is unclear, so that users may decide to litigate for privacy violations. The provider’s policy has an ambiguous effect on the consumers’ willingness to litigate. On the one hand, it improves customer experience, thereby creating an “enthusiasm effect” which alters the customers’ perception of the provider’s policy. On the other hand, it modifies the belief distribution concerning privacy-related issue, thus increasing the number of subscribers who are willing to ask for compensation. In this framework, the litigation dynamics may lead to multiple equilibria depending on the initial distribution of types in the users’ population.

Kinshuk Jerath,Klaus M. Miller

2024-05-29

Abstract:In response to privacy concerns about collecting and using personal data, the online advertising industry has been developing privacy-enhancing technologies (PETs), e.g., under Google's Privacy Sandbox initiative. In this research, we use the dual-privacy framework, which postulates that consumers have intrinsic and instrumental preferences for privacy, to understand consumers' perceived privacy violations (PPVs) for current and proposed online advertising practices. The key idea is that different practices differ in whether individual data leaves the consumer's machine or not and in how they track and target consumers; these affect, respectively, the intrinsic and instrumental components of privacy preferences differently, leading to different PPVs for different practices. We conducted online studies focused on consumers in the United States to elicit PPVs for various advertising practices. Our findings confirm the intuition that tracking and targeting consumers under the industry status quo of behavioral targeting leads to high PPV. New technologies or proposals that ensure that data are kept on the consumer's machine lower PPV relative to behavioral targeting but, importantly, this decrease is small. Furthermore, group-level targeting does not differ significantly from individual-level targeting in reducing PPV. Under contextual targeting, where there is no tracking, PPV is significantly reduced. Interestingly, with respect to PPV, consumers are indifferent between seeing untargeted ads and no ads when they are not being tracked. We find that consumer perceptions of privacy violations under different tracking and targeting practices may differ from what technical definitions suggest. Therefore, rather than relying solely on technical perspectives, a consumer-centric approach to privacy is needed, based on, for instance, the dual-privacy framework.

General Economics

A. Waldman

DOI: https://doi.org/10.2139/ssrn.3784667

2021-02-01

Abstract:Privacy law is at a crossroads. In the last two years, U.S. policymakers have introduced more than 50 proposals for comprehensive privacy legislation, most of which look roughly the same: they all combine a series of individual rights with internal compliance. The conventional wisdom in privacy scholarship explains this uniformity by looking to catalyzing precedent: the General Data Protection Regulation in Europe or the California Consumer Privacy Act. This article challenges that emerging consensus. Relying on contemporary sociological and critical studies scholarship, this article develops the concept of the social practice of privacy law and argues that recent privacy proposals in the U.S. look similar because the practices of privacy law are performative: they have socially constructed what we think privacy law is and should be. In other words, we have not only become accustomed to conceptualizing privacy law in a certain ways; we have come to see the rights-compliance model as the normal, ordinary, common sense modality of privacy law. So constructed, privacy law is flawed, with substantial negative effects for privacy, equality, and justice. Individual rights are misplaced weapons against the population-level harms of data-extractive capitalism. They also allow industry to weaponize our rights against us. Privacy law-as-compliance is even more troubling. It is internally inconsistent, protects the interests of the most powerful industry players, and elides informational capitalism’s substantive injustices. This article provides a full critical account of the latest developments in privacy law, focusing on its practices rather than law on the books alone. It details and challenges current privacy law’s focus on individual rights and internal compliance. And it explores potential new directions for privacy law based on the developing law and political economy literature, including new practices and performances that center privacy law around principles of power, equality, and democracy.

Sociology,Law

Francesc Dilme

DOI: https://doi.org/10.12688/openreseurope.16103.1

2023-08-31

Abstract:There are important public debates on how-or even whether-to regulate information about previous transactions in different markets. Examples are the regulation of cookies in online markets, secrecy laws in financial markets, and transparency directives in government purchases. In these debates, considerations of economic efficiency and fairness are central. Do more lenient information policies increase market efficiency? Do internet users benefit from cookies? Does more secrecy increase trade volume in financial markets? Does transparency on previous agreements deteriorate the bargaining power of public agencies? This essay sheds light on the answers to these questions using insights from economic theory. We do so by analyzing a simple, stylized setting where the incentives of different agents in the market will be clear. Our focus is on the dynamic effects of information regulations, as a trader's incentive to reveal or conceal information is driven by its future use by other traders. We use our setting to assess the implications of information regulations on behavior, trade efficiency, or social welfare.

Kai Hao Yang,Alexander K. Zentefis

DOI: https://doi.org/10.1016/j.jet.2023.105709

2024-02-13

Abstract:We consider the problem of how to regulate an oligopoly when firms have private information about their costs. In the environment, consumers make discrete choices over goods, and minimal structure is placed on the manner in which firms compete. In the optimal regulatory policy, the regulator need only solicit prices from firms, and based on those prices, charge them taxes or give them subsidies, and impose on each firm a ``yardstick'' price cap that depends on the posted prices of competing firms.

Theoretical Economics