The dense, legalistic documents that many commercial Web sites post to explain their data-collection habits are more likely to provide false reassurance than clarity to Web surfers, the University of Pennsylvania's Annenberg Public Policy Center found.
Prompted by, most top Web sites now contain prominent links to privacy policies that explain how visitors are tracked and what is done with e-mail addresses, names and other personal information they provide.
But while the disclosures may provide a measure of legal protection for the Web sites in question, they often end up misleading or confusing visitors, the report found.
Although many Web sites provide free content to visitors who provide their names, e-mail addresses and other personal information, 85 percent said they would rather pay a fee for anonymous access or get that information offline.
"People have no clue as to what goes on behind their screens," said Joseph Turow, the Annenberg professor who wrote the report.
Turow recommended that Web sites be required to translate their privacy policies into athat would allow users to automatically steer away from sites that they would find too invasive. P3P was introduced more than a year ago but has not been widely adopted.
Web sites should also be required to disclose in plain language what they know about their visitors, what they have done with that information, and what they plan to learn about them, he said.