An investigation of the impact of data breach severity on the readability of mandatory data breach notification letters: evidence from U.S. firms
Journal article
Jackson, S., Vanteeva, N. and Fearon, C. 2019. An investigation of the impact of data breach severity on the readability of mandatory data breach notification letters: evidence from U.S. firms. Journal of the Association for Information Science and Technology (formally Journal of the American Society for Information Science and Technology, JASIST). https://doi.org/10.1002/asi.24188
Authors | Jackson, S., Vanteeva, N. and Fearon, C. |
---|---|
Abstract | The aim of this article is to investigate the impact of data breach severity on the readability of mandatory data breach notification letters. Using a content analysis approach to determine data breach severity attributes (measured by the total number of breached records, type of data accessed, the source of the data breach, and how the data were used), in conjunction with readability measures (reading complexity, numerical intensity, length of letter, word size, and unique words), 512 data breach incidents from 281 U.S. firms across the 2012–2015 period were examined. The results indicate that data breach severity has a positive impact on reading complexity, length of letter, word size, and unique words, and a negative impact on numerical terms. Interpreting the results collectively through the lens of impression management, it can be inferred that business managers may be attempting to obfuscate bad news associated with high data breach severity incidents by manipulating syntactical features of the data breach notification letters in a way that makes the message difficult for individuals to comprehend. The study contributes to the information studies and impression management behavior literatures by analyzing linguistic cues in notifications following a data breach incident. |
Year | 2019 |
Journal | Journal of the Association for Information Science and Technology (formally Journal of the American Society for Information Science and Technology, JASIST) |
Publisher | Wiley |
ISSN | 2330-1635 |
Digital Object Identifier (DOI) | https://doi.org/10.1002/asi.24188 |
Publication dates | |
Online | 18 Mar 2019 |
Publication process dates | |
Deposited | 18 Dec 2018 |
Accepted | 13 Dec 2018 |
Accepted author manuscript | |
Output status | Published |
https://repository.canterbury.ac.uk/item/88y10/an-investigation-of-the-impact-of-data-breach-severity-on-the-readability-of-mandatory-data-breach-notification-letters-evidence-from-u-s-firms
Download files
80
total views266
total downloads1
views this month4
downloads this month