{"ID":2837160,"CreatedAt":"2026-06-01T04:54:23.091178241Z","UpdatedAt":"2026-06-01T04:54:23.091178241Z","DeletedAt":null,"paper_url":"https://arxiv.org/abs/2511.20791","arxiv_id":"2511.20791","title":"Beyond the Legal Lens: A Sociotechnical Taxonomy of Lived Privacy Incidents and Harms","abstract":"To understand how privacy incidents lead to harms, HCI researchers have historically leveraged legal frameworks. However, these frameworks expect acute, tangible harms and thus may not cover the full range of human experience relevant to modern-day digital privacy. To address this gap, our research builds upon these existing frameworks to develop a more comprehensive representation of people's lived experiences with privacy harms. We analyzed 369 privacy incidents reported by individuals from the general public. We found a broader range of privacy incidents and harms than accounted for in existing legal frameworks. The majority of reported privacy harms were not based on tangible harm, but on fear and loss of psychological safety. We also characterize the actors, motives, and information associated with various incidents. This work contributes a new framework for understanding digital privacy harms that can be utilized both in research and practice.","short_abstract":"To understand how privacy incidents lead to harms, HCI researchers have historically leveraged legal frameworks. However, these frameworks expect acute, tangible harms and thus may not cover the full range of human experience relevant to modern-day digital privacy. To address this gap, our research builds upon these ex...","url_abs":"https://arxiv.org/abs/2511.20791","url_pdf":"https://arxiv.org/pdf/2511.20791v1","authors":"[\"Kirsten Chapman\",\"Garrett Smith\",\"Kaitlyn Klabacka\",\"Harrison Winslow\",\"Louise Barkhuus\",\"Cori Faklaris\",\"Sauvik Das\",\"Pamela Wisniewski\",\"Bart Piet Knijnenburg\",\"Heather Lipford\",\"Xinru Page\"]","published":"2025-11-25T19:31:26Z","proceeding":"cs.HC","tasks":"[\"cs.HC\"]","methods":"[]","has_code":false}