The myth of individual control: Mapping the limitations of privacy self-management

Despite years of heavy criticism, privacy self-management (i.e., the principle that people individually manage their privacy via notice and choice) remains the standard of privacy protection throughout the Western world. Building on previous research, this article provides an overview and classification of the manifold obstacles that render privacy self-management largely useless in practice. People's privacy choices are typically irrational, involuntary and/or circumventable due to human limitations, corporate tricks, legal loopholes and the complexities of modern data processing. Moreover, the self-management approach ignores the consequences that individual privacy choices have on other people and society at large. Regarding future research, we argue that the focus should not be on whether privacy self-management can be fixed by making it more user-friendly or efficient – it cannot. The concept is based on fundamentally wrong assumptions. To meaningfully address the potentials and dangers of personal data processing in the 21st century, a shift away from relying purely on individual control is inevitable. We discuss potential ways forward, stressing the need for government intervention to regulate the social impact of personal data processing.

• Publication year

  2021

• Venue

  Social Science Research Network

• Publication date

  2021-07-07

• Fields of study

  Law, Computer Science

• Identifiers
  DOI 10.2139/ssrn.3881776
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• No references are available for this paper.

• Can genetic information make family lives any simpler?

  2025cites this paper
• Policy implications of digitalization pathways for lower energy demand

  2025cites this paper
• Understanding Privacy Visibility Dialectic in the Post-PIPL Era: Users’ Everyday Privacy Negotiations of (In-)Visibility on Digital Platforms

  2025cites this paper
• Towards Systemic IT Security. Introducing a Holistic Conceptual Framework for a Society-Centered Perspective Connecting IT and Cyber Security

  2025cites this paper
• Intimate Data Sharing: Enhancing Transparency and Control in Fertility Tracking

  2025cites this paper
• Self-Disclosure in Social Virtual Reality: The Influence of Information Management Dynamics, Social Presence, and Privacy Concerns

  2025cites this paper
• Examining generative image models amidst privacy regulations

  2024cites this paper
• Differences in access to privacy information can partly explain digital inequalities in privacy literacy and self-efficacy

  2024cites this paper
• Reinvigorating Consent: Exploring New Paradigms for Privacy and Data Sharing

  2024cites this paper
• Understanding Contextual Expectations for Sharing Wearables' Data: Insights from a Vignette Study

  2024cites this paper
• Online Platforms as Political Gatekeepers: The Role of Content Filtering Algorithms in Shaping Public Opinion

  2024cites this paper
• Initiating interdisciplinary research for future-proof data protection in the context of Data Spaces and semantic interoperable data sharing

  2024cites this paper
• The Role of Art in Building Community Identity and Health

  2024cites this paper
• Investigating Tangible Privacy-Preserving Mechanisms for Future Smart Homes

  2023cites this paper
• Your Name and Passport please: How the Data Privacy Myth fails to Withstand Reality – A Field-Level Perspective

  2023influential citation
• Who Is Targeting Me? Privacy Perceptions of and Responses to Commercial and Political Targeted Advertising on Social Media

  2023cites this paper
• Open Government Data Programs and Information Privacy Concerns: A Literature Review

  2023cites this paper
• Social media advertising for clinical studies: Ethical and data protection implications of online targeting

  2023cites this paper
• Privacy Dashboards for Citizens and corresponding GDPR Services for Small Data Holders: A Literature Review

  2023cites this paper
• Eye-Tracking in Virtual Reality

  2023cites this paper
• Predictive privacy: Collective data protection in the context of artificial intelligence and big data

  2023cites this paper
• Predictive Privacy: Collective Data Protection in the Context of AI and Big Data

  2022cites this paper
• Privacy self management in enterprise

  2022cites this paper
• The Processing goes far beyond "the app" – Privacy issues of decentralized Digital Contact Tracing using the example of the German Corona-Warn-App

  2022cites this paper
• Effects of algorithmic control on power asymmetry and inequality within organizations

  2022cites this paper
• Personal information inference from voice recordings: User awareness and privacy concerns

  2021cites this paper
• Surveilling the gamers: Privacy impacts of the video game industry

  2021cites this paper
• How Data Can Be Used Against People: A Classification of Personal Data Misuses

  2021cites this paper
• Challenges in enabling privacy self management

  2021cites this paper
• Factors Affecting MFA in Cloud Environments: A Case Study on Azure and AWS

  year unknowncites this paper