Skip to main content

Theory and policy in online privacy


Two technological behemoths, the computer and the Internet, have greatly facilitated the ease of collecting, managing, processing, and sharing information about individuals. This has been beneficial in accomplishing some socially and economically valuable objectives such as preventing fraud, tracking illegal behavior, and introducing potential customers to goods and services in which they may be interested. Unfortunately, the unfettered accumulation and analysis of personal data—both knowingly and inadvertently while web browsing online—has also ushered in significant privacy concerns. This thought piece introduces the issue, provides case studies and relevant legislation to underscore its gravity, and presents two rough theoretical models to aid in construing the phenomenon of online privacy. Suggestions for how the interpretive frameworks can be tested are also provided, along with a general call for increased legislation of transactional activity in cyberspace.

This is a preview of subscription content, access via your institution.


  • Berman, J. and Mulligan, D. (1999). “Privacy in the Digital Age: Work in Progress,” Nova Law Review, 23 (2),

  • Cable Communications Policy Act of 1984, 47 U.S.C. § 551 (1996)

  • “Carnivore: FBI Surveillance Software.” (2001). Computer World, Inc., <>.

  • Clarke, R. (1994). “The Technique of Computer Matching.” Information Technology and People, 7(2): 46–85.

    Article  Google Scholar 

  • “Communications Assistance for Law Enforcement Act.” (1994). Electronic Privacy Information Center, >>.

  • Culnan, M.J. and Milberg, S.J. (1999). Consumer Privacy. In M.J. Culnan, R.J. Beis, and M.B. Levy (Eds), Information Privacy: Looking Forward, Looking Back. Washington, D.C.: Georgetown University Press.

    Google Scholar 

  • “DMV Access.” (1998). Cohn and Marks, Washington, D.C., <>.

  • “Echelon watch.” (2001). American Civil Liberties Union, <>.

  • “Email Encryption Made Simple.”(1999). Information and Privacy Commissioner, Toronto, Ontario, <>.

  • “Equifax/Harris Consumer Privacy Survey: Executive Summary.” (1994). Equifax, Inc. and Louis Harris & Associates, <>.

  • Fair Credit Reporting Act of 1970, 15 U.S.C. § 1681 et seq.

  • Goldhamer, D. (2004). “Privacy concerns.” SHARE, Boston, MA, 24 July, <>.

  • “Graphs and Tables of the Results.” (1999). GVU’s 10th WWW User Survey. Graphics, Visualization, & Usability Center. Georgia Tech Research Corporation, <>.

  • Hansell, S. (1998). “Big Web Sites to Track Steps of Their Users.” New York Times, 16 August.

  • Hirschi, T. (1969). Causes of Delinquency. Berkeley: University of California Press.

    Google Scholar 

  • Hong, T. (2001). “Freenet: A Distributed Anonymous Information Storage and Retrieval System.” in Designing Privacy Enhancing Technologies: International Workshop on Design Issues in Anonymity and Unobservability, LNCS 2009. Federrath, H. (ed.). New York: Springer.

    Google Scholar 

  • “How PGP Works.” (1999). Introduction to Cryptography. PGP 6.5.1 documentation. Network Associates, Inc., <>.

  • “Image Data Contracted by Secret Service.” (1999). Cipherwar, 7 December <>.

  • Information Security and Privacy in Network Environments. (1994). United States Office of Technology Assessment. OTA-TCT-606 (September). Washington, D.C.: U.S. Government Printing Office.

  • Katz v. United States 389 U.S. 347. (1967). Legal Information Institute. Cornell Law School. 〈〉.

  • Kling, R. (1995). Information Technologies and the Shifting Balance between Privacy and Social Control.” Part VI, Article A of Computerization and Controversy: Value Conflicts and Social Choices, 2nd Ed. San Diego, Academic Press, 〈〉.

  • Kornblum, J. (1997). “AOL to Give Out Phone Numbers.” CNET, 22 July, 〈〉.

  • Laufer, R.S. and Wolfe, M. (1977). “Privacy as a Concept and a Social Issue: A Multidimensional Developmental Theory.” Journal of Social Issues, 33(3): 22–42.

    Article  Google Scholar 

  • Lessig, L. (1998). “The Architecture of Privacy.” (Draft 2). Taiwan Net '98, Taipei, Taiwan, 〈〉.

  • Lind, E.A. and Tyler, T.R. (1988). The Social Psychology of Procedural Justice. New York, NY: Plenum Press.

    Google Scholar 

  • Lindsay, G. (1999). “The Government Is Reading Your E-Mail.”, LLC, 24 June, 〈〉.

  • Martin, J. (2001). “Opting Out or Not: Financial Privacy Forms Criticized for Length, Complexity.”, 21 June, 〈〉.

  • Mayer-Schonberger, V. (1997). The Internet and Privacy Legislation: Cookies for a Treat? West Virginia Journal of Law and Technology, 1(1).

  • “Nearly 40 Million Internet Users Connect Via Broadband, Growing 49 Percent.” (2003). Nielsen Net Ratings, 〈〉.

  • Novak, T.P. and Hoffman, D.L. (1999). “Building Consumer Trust in Online Environments: The Case for Information Privacy.” Communications of the ACM, 〈〉.

  • Oram, A. (2000). “The Value of Gnutella and Freenet.” Web Review—Cross Training for Web Teams, 12 May, 〈〉.

  • Osterhus, T.L. (1997). Pro-Social Consumer Influence Strategies: When and How Do They Work? Journal of Marketing, 61: 16–29.

    Article  Google Scholar 

  • “Persistent Client State—HTTP Cookies.” (1999). Netscape Corporation, 〈〉.

  • Poulsen, K. (1999). “Echelon Revealed.” TechTV, LLC, 9 June, 〈,23008,2120457,00.html〉.

  • “Privacy and the National Information Infrastructure: Principles for Providing and Using Personal Information.” (1995). Privacy Working Group, Information Policy Committee. Information Infrastructure Task Force, 6 June, 〈〉.

  • Quinn, J. B. (2001). “New Privacy Law Gives Consumers ‘Opt Out’ Rights.” The Washington Post Company, 15 May, 〈〉.

  • “Records maintained on individuals.” (2000). U.S. Code, Title 5, Section 552a. The Legal Information Institute. Cornell Law School. 〈〉.

  • Right to Financial Privacy Act of 1978, 12 U.S.C. § 3401–34 (1996).

  • “Secret Service Aided License Photo Database.” (1999). Associated Press, Cable News Network, 18 February, 〈〉.

  • Singleton, S. (1999). “Privacy and Human Rights: Comparing the United States to Europe.” CATO Institute, 1 December, 〈〉.

  • Sobel, D. (2000). “EPIC Complaint Against DoubleClick Inc.” Electronic Privacy Information Center, 〈〉.

  • Steinhardt, B. (2000). “Carnivore Needs to be Caged.” Computerworld, 9 August 〈,1199,NAV47_STO48349,00.html〉.

  • Stone, M. (2000). “DoubleClick Accused of Double-Dealing Double-Cross.” Newsbytes. E-Commerce Times, 2 February, 〈〉.

  • Syverson, P. F., Reed, M. G., and Goldschlag, D. M. (2000). “Onion Routing Access Configurations.” DISCEX 2000: Proceedings of the DARPA Information Survivability Conference and Exposition, Volume I, Hilton Head, SC, IEEE CS Press, 34–40, 〈〉.

  • Toby, J. (1957). “Social Disorganization and Stake in Conformity: Complementary Factors in the Predatory Behavior of Hoodlums.” Journal of Criminal Law, Criminology, and Police Science, 48, 12–17.

    Article  Google Scholar 

  • Tribe, L. H. (1991). The Constitution in Cyberspace: Law and Liberty Beyond the Electronic Frontier. Keynote address at the first conference on Computers, Freedom & Privacy.

  • “Universal Declaration of Human Rights.” (1948). The Office of the High Commissioner for Human Rights. United Nations Department of Public Information, Geneva, Switzerland, 〈〉.

  • Video Privacy Protection Act of 1988, 18 U.S.C. § 2710.

  • Wacks, R. (1998). “The Death of Online Privacy?” 13 th Annual BILETA Conference: “The Changing Jurisdiction,” Trinity College, Dublin, 〈〉.

  • Warren, S. and Brandeis, L. (1890). “The Right to Privacy,” Harvard Law Review, 4 (193).

  • Walton, T. J. (1999). “Internet Privacy Law.” Internet Attorney, 〈〉.

  • Whalen, D. (2001). “The Unofficial Cookie FAQ,” Section 1.2, Version 2.53, 〈〉.

  • “Where Is Our Data?” (1997). Secure Computing: The Magazine for the Protection of Information, 18–22, August.

  • Wire and Electronic Communications Interception and Interception of Oral Communications. (2000). U.S. Code, Title 18, Chapter 19. The Legal Information Institute. Cornell Law School. 〈〉.

  • “Yahoo Pulls Phone Search.” (1997). CNET, 3 January, 〈〉.

Download references

Author information

Authors and Affiliations


Additional information

His research interests include computer crime, corporate security, and criminological theory.

Rights and permissions

Reprints and Permissions

About this article

Cite this article

Hinduja, S. Theory and policy in online privacy. Know Techn Pol 17, 38–58 (2004).

Download citation

  • Issue Date:

  • DOI:


  • Personal Information
  • Social Control
  • Personal Data
  • Real Space
  • Internet User