Privacy-invading mechanisms in e-commerce - a case study on German tourism websites

摘要

Against the importance of online privacy, this paper investigates German tourism websites previously shown as actively adopting mail tracking technology. For a sample of 50 highly visited websites, we analyse the quantity and type of data both mandatory and optional for registration. We further examine the extent to which personal data is collected in the background. Finally, we explore whether this practice can be associated with visibility of a privacy policy and other website design elements. Our results show an average of 24 contacted third-party websites, 42 generated cookies and 15 active trackers. Websites with visible general terms and conditions and privacy policies are connected with a significantly higher number of third-party services. Websites inviting users to follow them on Twitter contact significantly more third-party services and store significantly more cookies. There are high correlations of over 0.7 between the numbers of contacted third-party services, generated cookies and activated trackers.