While the concerns about the security of Pokemon Go users’ private information last week appear to have been over-hyped, the flap illustrated how little users of mobile apps and websites know about what’s in the terms to which they’ve agreed.
A recent working paper, “The Biggest Lie on the Internet,” from professors at Michigan State and the University of Connecticut, finds that the vast majority of adults don’t read such terms.
Related: The Scary Way Pokémon Go Is Making Money Off You
For the study, researchers created a fictitious social networking site with a privacy policy and terms of service agreement that were the same length as those required by the real social networking site LinkedIn. The policy should have taken the average reader about 45 minutes to review. Users clicked through them at an average of just over two minutes, and the mean time spent was 14 seconds for both.
“Fourteen seconds is hardly enough time to read, understand and provide informed consent to policies between 4,000 and 8,0000 words in length,” researchers wrote. “Spending 14 seconds (or 60 seconds for that matter) is akin to not reading the policies at all.”
The study showed how easy it is for companies to get consumers to agree to potentially problematic terms. Survey participants missed the “gotcha” clauses researchers hidden in the text, including the promise give-up their first-born child to the site. Fewer than 2 percent of study participants questioned that clause, and 100 percent of them agreed to both policies.