There are side effects to increased cybersecurity.
Some people are overwhelmed by security alerts. Others change their behavior when they see the privacy notice.
A report published in January indicates that people are less interested in making a purchase when they see a generic privacy pop-up on a website.
However, the impact disappeared when the review included phrases such as “We care about your privacy”.
Researchers refer to these phrases as “benevolence cues.”
“While these benevolent signals offer no legal protection for consumers, they do help build trust,” said Aaron Brough, a professor at Utah State University.
His team found that business leaders overwhelmingly believed that a strong privacy notice would increase consumer trust.
Instead, these privacy pop-ups were likely to turn customers away if they didn’t contain benevolent language.
“People who write privacy policies and privacy notices don’t usually think about consumer feedback as much as about the legal ramifications for the business,” Brough said. “It’s what we’ve found that really makes a difference here. When you communicate without the company caring about the consumer, it has a negative effect, rather than a positive effect, on buying interest. “
Others find themselves overwhelmed by the sheer volume of alerts they receive every day.
According to a survey released earlier this year, more than 60% of US IT experts said they receive more than 500 cloud security alerts every day.
“More than half of organizations believe they miss critical alerts on a weekly or, sometimes, daily basis,” said Avi Shua, co-founder and CEO of Orca Security.
Shua said missed alerts are related to overall alert fatigue.
“It’s a really bad place,” Shua said. “Tools that generate technically correct but effectively unusable alerts.”
Alert fatigue is not unique to IT professionals. It is also common in the world of medicine. This can lead to burnout and friction in the workplace.
There may not be an easy solution.
Experts say companies can take the first step by suppressing alerts that aren’t business-critical.