{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,11]],"date-time":"2025-09-11T20:27:38Z","timestamp":1757622458477,"version":"3.44.0"},"publisher-location":"Cham","reference-count":71,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783032006233"},{"type":"electronic","value":"9783032006240"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-032-00624-0_4","type":"book-chapter","created":{"date-parts":[[2025,8,9]],"date-time":"2025-08-09T11:42:21Z","timestamp":1754739741000},"page":"68-91","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Cross-Jurisdictional Compliance with\u00a0Privacy Laws: How Websites Adapt Consent Notices to\u00a0Regional Regulations"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1773-3062","authenticated-orcid":false,"given":"Xander","family":"Smeets","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5247-7711","authenticated-orcid":false,"given":"Michele","family":"Campobasso","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9081-5996","authenticated-orcid":false,"given":"Nicola","family":"Zannone","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,8,10]]},"reference":[{"key":"4_CR1","unstructured":"Art. 29 Data Protection Working Party. Op. 04\/2012 on Cookie Consent Exemption (2012)"},{"key":"4_CR2","unstructured":"Art. 29 Data Protection Working Party. Guidelines on transparency for Reg. 2016\/679 (2018)"},{"key":"4_CR3","unstructured":"Bekh, A.: Advertising-based revenue model in digital media market. Econviews: Review of Contemporary Entrepreneurship, Business, and Economic Issues, 33(2), 547\u2013559 (2020)"},{"key":"4_CR4","doi-asserted-by":"crossref","unstructured":"Berens, B.M., Dietmann, H., Krisam, C., Kulyk, O., Volkamer, M.: Cookie Disclaimers: Impact of Design and Users\u2019 Attitude. In: ARES. ACM (2022)","DOI":"10.1145\/3538969.3539008"},{"key":"4_CR5","doi-asserted-by":"crossref","unstructured":"Bermejo\u00a0Fernandez, C., Chatzopoulos, D., Papadopoulos, D., Hui, P.: This Website Uses Nudging: MTurk Workers\u2019 Behaviour on Cookie Consent Notices. In: HCI. ACM (2021)","DOI":"10.1145\/3476087"},{"key":"4_CR6","doi-asserted-by":"crossref","unstructured":"Bollinger, D., Kubicek, K., Cotrini, C., Basin, D.: Automating Cookie Consent and GDPR Violation Detection. In: USENIX Security Symposium, pp. 2893\u20132910 (2022)","DOI":"10.2478\/popets-2022-0046"},{"issue":"1","key":"4_CR7","first-page":"1","volume":"107","author":"A Bradford","year":"2012","unstructured":"Bradford, A.: The Brussels Effect. Northwest. Univ. Law Rev. 107(1), 1\u201367 (2012)","journal-title":"Northwest. Univ. Law Rev."},{"key":"4_CR8","unstructured":"Brignull, H.: Dark Patterns: User Interfaces Designed to Trick People (2010)"},{"key":"4_CR9","unstructured":"Brignull, H.: Dark Patterns: Deception vs. Honesty in UI Design (2011)"},{"key":"4_CR10","unstructured":"Canadian Radio-television and Telecommunications Commission. Canada\u2019s Anti-Spam Legislation Requirements for Installing Computer Programs (2020)"},{"key":"4_CR11","unstructured":"Court of Justice of the European Union. Koninklijke Nederlandse Lawn Tennisbond v Autoriteit Persoonsgegevens. ECLI:EU:C:2024:857 (2024)"},{"key":"4_CR12","doi-asserted-by":"crossref","unstructured":"Dabrowski, A., Merzdovnik, G., Ullrich, J., Sendera, G., Weippl, E.: Measuring Cookies and Web Privacy in a Post-GDPR World. In: PAM, pp. 258\u2013270. Springer (2019)","DOI":"10.1007\/978-3-030-15986-3_17"},{"key":"4_CR13","unstructured":"EDPB. Guidelines 2\/2019 on the processing of personal data under Article 6(1)(b) GDPR in the context of the provision of online services to data subjects (2019)"},{"key":"4_CR14","unstructured":"EDPB. Guidelines 05\/2020 on consent under Regulation 2016\/679 (2020)"},{"key":"4_CR15","unstructured":"EDPB. Guidelines 4\/2019 on Article 25 Data Protection by Design and by Default (2020)"},{"key":"4_CR16","unstructured":"EDPB. Report of the work undertaken by the Cookie Banner Taskforce (2023)"},{"key":"4_CR17","unstructured":"EDPB (European Data Protection Board). Deceptive design patterns in social media platform interfaces: how to recognise and avoid them (2023)"},{"key":"4_CR18","unstructured":"v. Eijk, R., Asghari, H., Winter, P., Narayanan, A.: The Impact of User Location on Cookie Notices (Inside and Outside of the European Union). In: ConPro (2019)"},{"key":"4_CR19","unstructured":"European Parliament and Council of the European Union. Directive 2002\/58\/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) (2002)"},{"key":"4_CR20","unstructured":"European Parliament and Council of the European Union. Regulation (EU) 2016\/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (GDPR) (2016)"},{"key":"4_CR21","unstructured":"European Parliament and Council of the European Union. Regulation (EU) 2016\/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (UK GDPR) (2016)"},{"key":"4_CR22","unstructured":"European Parliament and Council of the European Union. Reg. (EU) 2022\/2065 on a Single Market For Digital Services and amending Directive 2000\/31\/EC (Digital Services Act) (2022)"},{"key":"4_CR23","unstructured":"European Parliament and Council of the European Union. Regulation (EU) 2022\/1925 on contestable and fair markets in the digital sector and amending Directives (EU) 2019\/1937 and (EU) 2020\/1828 (Digital Markets Act) (2022)"},{"key":"4_CR24","doi-asserted-by":"crossref","unstructured":"Gray, C.M., Kou, Y., Battles, B., Hoggatt, J., Toombs, A.L.: The Dark (Patterns) Side of UX Design. In: Conference on Human Factors in Computing Systems, pp. 1\u201314. ACM (2018)","DOI":"10.1145\/3173574.3174108"},{"key":"4_CR25","doi-asserted-by":"crossref","unstructured":"Gray, C.M., Santos, C., Bielova, N., Toth, M., Clifford, D.: Dark patterns and the legal requirements of consent banners: an interaction criticism perspective. In: Conference on Human Factors in Computing Systems. ACM (2021)","DOI":"10.1145\/3411764.3445779"},{"key":"4_CR26","doi-asserted-by":"crossref","unstructured":"Gunawan, J., Pradeep, A., Choffnes, D., Hartzog, W., Wilson, C.: A comparative study of dark patterns across web and mobile modalities. ACM Hum.-Comput. Interact., 5 (2021)","DOI":"10.1145\/3479521"},{"key":"4_CR27","doi-asserted-by":"crossref","unstructured":"Gundelach, R., Herrmann, D.: Cookiescanner: an automated tool for detecting and evaluating GDPR consent notices on websites. In: ARES. ACM (2023)","DOI":"10.1145\/3600160.3605000"},{"key":"4_CR28","doi-asserted-by":"crossref","unstructured":"Habib, H., Li, M., Young, E., Cranor, L.: \u201cOkay, whatever\u201d: an evaluation of cookie consent interfaces. In: Conference on Human Factors in Computing Systems. ACM (2022)","DOI":"10.1145\/3491102.3501985"},{"key":"4_CR29","doi-asserted-by":"crossref","unstructured":"Habib, H., et al.: Toggles, Dollar Signs, and Triangles: How to (In)Effectively Convey Privacy Choices with Icons and Link Texts. In: Conference on Human Factors in Computing Systems. ACM (2021)","DOI":"10.1145\/3411764.3445387"},{"key":"4_CR30","doi-asserted-by":"crossref","unstructured":"Hennig, A., Dietmann, H., Lehr, F., Mutter, M., Volkamer, M., Mayer, P.: Your Cookie Disclaimer is Not in Line with the Ideas of the GDPR. Why? In: Human Aspects of Information Security and Assurance, pp. 218\u2013227. Springer (2022)","DOI":"10.1007\/978-3-031-12172-2_17"},{"key":"4_CR31","doi-asserted-by":"crossref","unstructured":"Holtz, L.-E., Zwingelberg, H., Hansen, M.: Privacy policy icons. In: Privacy and Identity Management for Life, pp. 279\u2013285. Springer (2011)","DOI":"10.1007\/978-3-642-20317-6_15"},{"key":"4_CR32","doi-asserted-by":"crossref","unstructured":"Hutto, C., Gilbert, E.: VADER: a parsimonious rule-based model for sentiment analysis of social media text. Internat. AAAI Conf. on Web and Social Media, vol. 8(1), 216\u2013225 (2014)","DOI":"10.1609\/icwsm.v8i1.14550"},{"key":"4_CR33","unstructured":"IAB Europe. TCF Standardisation Principles"},{"key":"4_CR34","unstructured":"kairi003. Get cookies.txt LOCALLY (2024)"},{"key":"4_CR35","unstructured":"Khandelwal, R., Nayak, A., Harkous, H., Fawaz, K.: Automated cookie notice analysis and enforcement. In: USENIX Security Symposium, USENIX Association (2023)"},{"key":"4_CR36","doi-asserted-by":"crossref","unstructured":"Kirkman, D., Vaniea, K., Woods, D.W.: DarkDialogs: automated detection of 10 dark patterns on cookie dialogs. In: EuroS &P, pp. 847\u2013867. IEEE (2023)","DOI":"10.1109\/EuroSP57164.2023.00055"},{"key":"4_CR37","doi-asserted-by":"crossref","unstructured":"K.\u00a0Kollnig, R.\u00a0Binns, M.\u00a0Van\u00a0Kleek, U.\u00a0Lyngs, J.\u00a0Zhao, C.\u00a0Tinsman, and N.\u00a0Shadbolt. Before and After GDPR: Tracking in Mobile Apps. Internet Policy Review, 10(4), 2021","DOI":"10.14763\/2021.4.1611"},{"key":"4_CR38","unstructured":"Kollnig, K., et al.: A fait accompli? an empirical study into the absence of consent to third-party tracking in android apps. In: SOUP, pp. 181\u2013196. USENIX Association (2021)"},{"key":"4_CR39","doi-asserted-by":"crossref","unstructured":"Matte, C., Bielova, N., Santos, C.: Do cookie banners respect my choice? measuring legal compliance of banners from IAB Europe\u2019s transparency and consent framework. In: IEEE Symposium on Security and Privacy, pp. 791\u2013809 (2020)","DOI":"10.1109\/SP40000.2020.00076"},{"key":"4_CR40","unstructured":"M\u00fcller, S., Goswami, S., Krcmar, H.: Monetizing Blogs: Revenue Streams of Individual Blogs. In: European Conf. on Information Systems (2011)"},{"key":"4_CR41","unstructured":"National Cancer Institute. Simplification of Informed Consent Documents - Recomms (2006)"},{"key":"4_CR42","unstructured":"Nguyen, T.T., Backes, M., Marnau, N., Stock, B.: Share First, Ask Later (or Never?) Studying Violations of GDPR\u2019s Explicit Consent in Android Apps. In: USENIX Security Symposium, pp. 3667\u20133684. USENIX Association (2021)"},{"key":"4_CR43","doi-asserted-by":"crossref","unstructured":"Nguyen, T.T., Backes, M., Stock, B.: Freely given consent? studying consent notice of third-party tracking and its violations of GDPR in android apps. In: SIGSAC Conference on Computer and Communications Security, pp. 2369\u20132383. ACM (2022)","DOI":"10.1145\/3548606.3560564"},{"key":"4_CR44","unstructured":"Office of the Attorney General of the State of California. California Consumer Privacy Act (CCPA) (2023)"},{"key":"4_CR45","unstructured":"Office of the Privacy Commissioner of Canada. Policy position on online behavioural advertising (2021)"},{"key":"4_CR46","doi-asserted-by":"publisher","DOI":"10.1145\/3600160.3605079","volume-title":"A comprehensive study on third-party user tracking in mobile applications","author":"F Paci","year":"2023","unstructured":"Paci, F., Pizzoli, J., Zannone, N.: A comprehensive study on third-party user tracking in mobile applications. ACM, In ARES (2023)"},{"key":"4_CR47","doi-asserted-by":"crossref","unstructured":"Papadogiannakis, E., Papadopoulos, P.,\u00a0Kourtellis, N., Markatos, E.P.: User Tracking in the Post-cookie Era: How Websites Bypass GDPR Consent to Track Users. In: The Web Conference, pp. 2130\u20132141. ACM (2021)","DOI":"10.1145\/3442381.3450056"},{"key":"4_CR48","unstructured":"Parliament of Canada. Personal Information Protection and Electronic Documents Act \u2013 Exemptions for Organizations in Alberta, British Columbia, and Quebec and for Personal Health Information Custodians in New Brunswick, Newfoundland, Labrador, and Nova Scotia. https:\/\/laws-lois.justice.gc.ca\/eng\/acts\/P-8.6\/ (2000)"},{"key":"4_CR49","unstructured":"Parliament of Canada. Personal Information Protection and Electronic Documents Act (2019)"},{"key":"4_CR50","unstructured":"Parliament of Canada. An Act to promote the efficiency and adaptability of the Canadian economy by regulating certain activities that discourage reliance on electronic means of carrying out commercial activities, and to amend the Canadian Radio-television and Telecommunications Commission Act, the Competition Act, the Personal Information Protection and Electronic Documents Act and the Telecommunications Act (2023)"},{"key":"4_CR51","unstructured":"Parliament of Canada. Privacy Act (2023)"},{"key":"4_CR52","unstructured":"Parliament of the United Kingdom of Great Britain and Northern Ireland. European Union (Withdrawal) Act 2018 (2018)"},{"key":"4_CR53","unstructured":"Privacy Community Group. Global Privacy Control - Take Control Of Your Privacy"},{"key":"4_CR54","doi-asserted-by":"crossref","unstructured":"Rasaii, A., Singh, S., Gosain, D., Gasser, O.: Exploring the Cookieverse: A Multi-Perspective Analysis of Web Cookies. In: PAM, pp. 623\u2013651. Springer (2023)","DOI":"10.1007\/978-3-031-28486-1_26"},{"key":"4_CR55","doi-asserted-by":"crossref","unstructured":"Santos, C., Bielova, N., Matte, C.: Are cookie banners indeed compliant with the law? Deciphering EU legal requirements on consent and technical means to verify compliance of cookie banners. Technology and Regulation, pp. 91\u2013135 (2020)","DOI":"10.71265\/g317tv72"},{"key":"4_CR56","doi-asserted-by":"crossref","unstructured":"Santos, C., Rossi, A., Sanchez\u00a0Chamorro, L., Bongard-Blanchy, K., Abu-Salma, R.: Cookie Banners, What\u2019s the Purpose? Analyzing Cookie Banner Text Through a Legal Lens. In Workshop on Privacy in the Electronic Society, WPES \u201921, pp. 187\u2013194. ACM (2021)","DOI":"10.1145\/3463676.3485611"},{"key":"4_CR57","unstructured":"Scott, M., Cerulus, L.: Europe\u2019s new data protection rules export privacy standards worldwide (2018)"},{"key":"4_CR58","unstructured":"Secretary of State of the United Kingdom of Great Britain and Northern Ireland. The Data Protection, Privacy and Electronic Communications (Amendments, EU Exit) Reg. 2019 (2020)"},{"key":"4_CR59","unstructured":"Secretary of State of the United Kingdom of Great Britain and Northern Ireland. The Privacy and Electronic Communications (EC Directive) Regulations 2003 (2020)"},{"key":"4_CR60","unstructured":"Smeets, X.: Do websites truly value your privacy? An analysis of privacy requirement compliance among websites differing between jurisdictions. Master\u2019s thesis, Eindhoven University of Technology (2024)"},{"key":"4_CR61","doi-asserted-by":"publisher","DOI":"10.1145\/3419249.3420132","volume-title":"Circumvention by design - dark patterns in cookie consent for online news outlets","author":"TH Soe","year":"2020","unstructured":"Soe, T.H., Nordberg, O.E., Guribye, F., Slavkovik, M.: Circumvention by design - dark patterns in cookie consent for online news outlets. ACM, In NordiCHI (2020)"},{"key":"4_CR62","unstructured":"Software Freedom Conservancy. Selenium (2024)"},{"key":"4_CR63","unstructured":"State of California. California Code of Regulations - Title\u00a011, Division\u00a06, Chapter\u00a01 - California Consumer Privacy Act Regulations"},{"key":"4_CR64","unstructured":"State of California. California Consumer Privacy Act of 2018 (2018)"},{"key":"4_CR65","unstructured":"State of California. California Privacy Rights Act of 2020 (2020)"},{"key":"4_CR66","doi-asserted-by":"publisher","DOI":"10.1145\/2335356.2335362","volume-title":"Smart, useful, scary, creepy: perceptions of online behavioral advertising","author":"B Ur","year":"2012","unstructured":"Ur, B., Leon, P.G., Cranor, L.F., Shay, R., Wang, Y.: Smart, useful, scary, creepy: perceptions of online behavioral advertising. ACM, In Symposium on Usable Privacy and Security (2012)"},{"key":"4_CR67","doi-asserted-by":"crossref","unstructured":"Utz, C., Degeling, M., Fahl, S., Schaub, F., Holz, T.: (Un)informed Consent: Studying GDPR Consent Notices in the Field. In: CCS, pp. 973\u2013990. ACM (2019)","DOI":"10.1145\/3319535.3354212"},{"key":"4_CR68","doi-asserted-by":"crossref","unstructured":"van Nortwick, M., Wilson, C.: Setting the bar low: are websites complying with the minimum requirements of the CCPA? In: PoPETs Proceedings, pp. 608\u2013628 (2022)","DOI":"10.2478\/popets-2022-0030"},{"issue":"4","key":"4_CR69","doi-asserted-by":"publisher","first-page":"385","DOI":"10.1177\/009286150804200411","volume":"42","author":"KA Walters","year":"2008","unstructured":"Walters, K.A., Hamrell, M.R.: Consent Forms, Lower Reading Levels, and Using Flesch-Kincaid Readability Software. Drug information journal\u202f: DIJ \/ Drug Information Association 42(4), 385\u2013394 (2008). https:\/\/doi.org\/10.1177\/009286150804200411","journal-title":"Drug information journal : DIJ \/ Drug Information Association"},{"key":"4_CR70","doi-asserted-by":"crossref","unstructured":"Yayla, A., Dincelli, E., Parameswaran, S.: A Mining Town in a Digital Land: Browser-Based Cryptocurrency Mining as an Alternative to Online Advertising. Information Systems Frontiers (2023)","DOI":"10.1007\/s10796-023-10386-6"},{"key":"4_CR71","doi-asserted-by":"crossref","unstructured":"Zanfir-Fortuna, G.: Planet49 CJEU Judgment brings some \u2018Cookie Consent\u2019 Certainty to Planet Online Tracking (2019)","DOI":"10.21428\/9885764c.745f9a7b"}],"container-title":["Lecture Notes in Computer Science","Availability, Reliability and Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-00624-0_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,8]],"date-time":"2025-09-08T19:44:10Z","timestamp":1757360650000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-00624-0_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783032006233","9783032006240"],"references-count":71,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-00624-0_4","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"10 August 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ARES","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Availability, Reliability and Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Ghent","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Belgium","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"11 August 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 August 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ares-12025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/2025.ares-conference.eu","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}