I was asked by Juro to help them create the “best privacy notice in the world”: a privacy notice that users would really read and understand.
Usually privacy policies end up not being read because it takes too much effort, time, and attention. However, GDPR now set a clear requirement to be user-friendly and transparent in privacy notices. Now it’s not a nice to have, it’s something that’s demanded.
So, what design patterns and strategies can we use to avoid information overload, communicate as clearly as possible, and retain reader’s attention?
The short notice
Full privacy notices are usually very long and users have to scroll a lot. That generates user fatigue, particularly on mobile. The accordion pattern helps making the full privacy notice all more compact and visually contained: it presents the most important information at the top, and place further details inside expandable panels – showing an overview first and let readers drill down later. This is another example of layered approach.
Users understand information better when they can contextualize it within their experience. Talking in general, abstract about what data is collected and how does not resonate with them. Instead, we used a timeline to map out all the privacy-sensitive interactions between the users and Juro. The timeline shows the exact moments when their data is collected, making the whole process more tangible and transparent.
resources and links
> Read more about the design process of this project
> See the project live: short privacy notice and long privacy notice