UX Hacking the Personal Data Dashboard

From IIW
Jump to: navigation, search

UX Hacking the Personal Data Dashboard


Tuesday 2B

Convener: John Wunderlich

Notes-taker(s): Giles Watkins

Tags for the session - technology discussed/ideas considered:


#GDPR


#PersonalDataDashboard


#ConsentDashboard


#ContextBasedConsent


#ConsentRevocation


#AIagents


Discussion notes, key understandings, outstanding questions, observations, and, if

appropriate to this discussion: action items, next steps:


Problem statement – wonderful having all your info and under your control – especially if you are a

geek. However, most people don’t want the depth and complexity of a comprehensive ‘engine

management system’. We need something simple, with ‘levers’(or pedals !) to be able to control the

juggernaut


What sort of visual cues do we need ?


What would make it usable / contagious for people outside of the identity community?


Christopher Allen

- Sharing research from Bitcoin and Wallets

- Progressive disclosure has been an emerging concept

- Taking a step further – ‘decision-based’ disclosure

- Perhaps taking learnings from the ‘Gaming Horizon’ concept


Joe Andrieu

- Best UX is the one that doesn’t exist…..

- Don’t want a generalised permission dialogue

- Need it built into the decision / workflow


Phil Windley

- Better to deconstruct the dashboard

- Eg typical LMS – replicates things they already have (eg calendar, to do list etc)

- Why not put that information into the places they already go


Joyce Searles

- But its useful to have a ‘contextual dashboard’ – eh when I am driving, its useful to know

whats going on with the car….


Phil Windley

- There probably IS a case for a ‘persona data dashboard’ – because nothing exists right now,

and there are an increasing number of complexities springing up


Katryna Dow

- Now taking first person information and putting it into third person contexts

- Making it ‘easier’ often means giving everything away – with no control…..

- GDPR brings some of this into a legal context

- Is there something between the dashboard and the third party that provides control over

what gets shared and with who


Phil Windley

- There are some existing technical standards (eg calendars) but where are there not

standards


Katryna Dow

- Not a technology problem….. More about how we get the existing world to adapt to and

adopt the new principles about first person control


John Wunderlich

- So maybe we need a protocol that says APIs can push information into the dashboard, but

can’t pull information from the dashboard into third party systems


AN Other

- Do we need systems that can put certain information into dashboards / calendars, but have

links to where more detailed information can be found (which needs to be permissioned)


AN Other

- Dashboard / authorisation as a service – two different things…..

- People are not going to go to the dashboard everyday (probably)

- But would want to have episodic / contextual views


John Wunderlich

- No such thing as an ‘intuitive interface’

- So, how do we create something that is going to make ‘general sense to the general user’ ?


Phil Windley

- Need to integrate AI with contextual view, to create a time-based push of information

- Would be useful if the AI could look at data usage and ask you questions about what you are

sharing and whether you still want to

- Is this possible outside of the large players (Google, Apple etc) – is the Network effect too

dominant. Or, are we just going to create another dominant player?

- Would this be possible with personalised AI, personalised search and a personalised

timeline???


Jim Fournier

- If the big players always have to ask permission for the data / access to it, then we can

break the cycle of their network learning effect


John Wunderlich

To draw the discussion together - What does a dashboard / service need to give us ?

Responses:

- We are going to need a ‘magical undo’ function – to pull back previous decisions

- We will need ability to know ‘what have I shared’?

- We also need to know ‘what WILL I share’?


Tiffany

- We need to work out whether we are creating a UX to ‘educate’ or to meet a ‘demand’ from

someone.


Giles Watkins

- Too big a problem to try and educate every citizen to drive adoption

- We need to work out how to get a ‘band of competitors’ to collaborate on working out

common standards/approach to this problem and push it out to citizens

- Possibly like the OIX model…..


AN Other

- Perhaps we could develop some sort of algorithmic / questionnaire based way of learning

what a specific citizens ‘attitude to Privacy’ is…. Not everyone is equal….


Katryna Dow

- There is a looming problem with the potential to feed a lot of really detailed and sensitive

information into a ‘black box’ that start processing it with algorithmic learning without

proper standards and controls

- It will be hard to roll-back from a bad situation like that


AN Other

Recommendation – people should try and read the recent posts from Adrian Colyer (website –

https://www.themorningpaper.com ) – discussing the problem with Git…. We need a better understanding

of how human beings learn and design around that


John Wunderlich

Maybe the learning from this session has been (apart from the obvious, that this is a hard problem

to solve!) – if the back-end systems aren’t already based on ‘human centric’ design, then we will not

be able to put a human centric ‘dashboard’ on top.

It is going to take some collaboration, probably by competitors, to create some usable and standard

approaches to the problem.


Next Steps:

John to consider the themes arising and what might be a useful way to continue the debate.