Jaspreet Bhatia

4208 Wean Hall, Carnegie Mellon University

I am a fifth year Ph.D. student at the Institute for Software Research at Carnegie Mellon University. I am fortunate to be advised by Dr. Travis Breaux.

As a software engineering and privacy researcher, I aim to improve the design of trustworthy systems for privacy and the trust that users and regulators have in privacy-preserving systems.

My research is motivated by the need to develop scalable systems to analyze privacy requirements for defects and to measure perceived privacy risk. My current research has three main themes: (a) developing techniques to automatically analyze privacy requirements (b) identifying and measuring ambiguity in privacy requirements, and (c) measuring how different factors affect privacy risk. I believe my research, in addition to developing solutions to real-world problems, aims to answer fundamental questions in natural language and human perception: how does ambiguity occur in natural language text? what are the semantic functions that predict ambiguity? and how can we measure user perceptions of risk?


7 Nov 2018 I am presenting our privacy risk work at NIST Cybersecurity Risk Management Conference 2018.
10 Aug 2018 I completed my summer internship at Target Data Science group.
1 Aug 2018 Our paper on empirical measurement of perceived privacy risk has been accepted to ACM Transactions of Computer-Human Interaction (TOCHI).
30 May 2018 Our paper on grounded analysis of semantic roles in privacy goals has been accepted to RE 2018 and has won a Distinguished Research Paper Award .
28 Feb 2018 I presented our privacy risk work at PrivacyCon 2018.
9 Nov 2017 I presented (and passed!) my thesis proposal titled Ambiguity in Privacy Policies and Perceived Privacy Risk on 9th November 2017 at Carnegie Mellon University.
6 Sep 2017 I presented our paper describing a case study of data purposes in privacy policies at RE 2017.
May 2017 Our papers on automated hypernymy extraction and on the case study on data purposes have been accepted to RE 2017.
Mar 2017 I am on the program committee for AIRE 2017 workshop. Please consider submitting a paper! .
Feb 2017 Our work on developing a framework for understanding and measuring privacy risk has been accepted for discussion at Privacy Law Scholars Conference 2017.
Dec 2016 Our TOSEM paper on extracting privacy goals using hybridized task re-composition framework has been invited for presentation at ICSE 2017.
16 Nov 2016 Our paper on ambiguity in privacy policies and its impact on regulations received an Honorable Mention for Privacy Papers for Policymakers (Press Release).
18 Oct 2016 Presented our work on perceived privacy risk at the C3E workshop at Georgia Institute of Technology, Atlanta.
16 Sep 2016 Our paper on vagueness and risk perception was nominated for best paper award at RE'16 in Beijing.
15 Sep 2016 I will be presenting our paper on vagueness and risk perception at RE 2016, in Beijing (China) on 15 September 2016.
Summer 2016 Mentored an (awesome!) undergraduate REU student, Morgan Evans. Developed a technique to automatically identify and extract information type hyponymy relationships in privacy policies.
21 Mar 2016 Our paper on extracting privacy goals using hybridized task re-composition framework has been accepted for publication to TOSEM journal first edition.
16 Oct 2015 Joel Reidenberg and I, presented our work on comparing privacy policy ambiguity and its impact on regulation at the Contracting over Privacy Workshop, at University of Chicago.
Aug 2015 Presented our paper on automatically extracting information types from crowsourced privacy policy annotations at RELAW workshop held at RE 2015, in Ottawa (Canada).

CV  |  Google Scholar  |  LinkedIn