Log in or create a free Rosenverse account to watch this video.
Log in Create free account100s of community videos are available to free members. Conference talks are generally available to Gold members.
Beyond Clicks and Tricks: Why deceptive design has grown into a regulatory faultline
Summary
Deceptive design has a long prehistory. Before it became a recognised field with legal and regulatory consequences, it lived quietly in user interfaces, persuasive patterns, and the small frictions that nudged people into choices they never quite meant to make. This fireside chat brings together three leading voices to trace that evolution and map its next steps. Dr Harry Brignull opens with the historical and cultural arc of deceptive design, showing how early interface tricks solidified into a taxonomy and a movement. Author Robert Stribley then guides the conversation into the world of privacy-protective design, examining why users often remain indifferent to risks, why organisations struggle to prioritise privacy, and how better design principles can restore agency rather than erode it. Dr Mark Leiser closes by shifting from screens to systems. His work reveals how dark patterns now extend far beyond the UI, emerging in algorithmic optimisation, platform architecture, and AI-driven inference. This is where deceptive design becomes a structural problem, not a cosmetic one, and where law, regulation, and system design collide. Together, Brignull, Stribley, and Leiser explore how design, privacy, and digital regulation are becoming inseparable, and what it will take to build technologies that respect people rather than manipulate them. The result is an interdisciplinary, future-facing conversation about one of the most urgent challenges in the digital environment today.
Key Insights
-
•
Dark patterns originated from early attempts to influence behavior beyond usability, gaining wide attention after Harry's 2010 talk.
-
•
Mark's legal perspective frames deceptive design as causing tangible financial harm, distinct from traditional privacy issues.
-
•
The GDPR and similar regulations struggle with enforcement due to lack of precise guidance and intersecting consumer and privacy laws.
-
•
Designers often lack legal training, leading to reliance on compliance approvals rather than proactive ethical or legal considerations.
-
•
Deceptive UX patterns like manipulative cookie banners offer false choices that obscure users’ ability to reject tracking.
-
•
Systemic deceptive architectures use AI to adapt prompts based on user behavior, presenting a new, harder-to-detect form of manipulation.
-
•
There is a pressing need for design industry groups to set professional standards against manipulative or coercive design practices.
-
•
Consent models like presumed consent in the U.S. mask the reality that users rarely provide informed consent.
-
•
The privacy paradox—users claiming to value privacy but behaving otherwise—may be explained by deceptive design trickery.
-
•
Recourse systems in digital products are underdeveloped, leaving users powerless when harmed beyond the interface.
Notable Quotes
"Everyone knew tech was changing the world and we all had this peak at how amazing the web was going to be."
"User research then focused on basic usability problems like removing reset buttons that wiped forms."
"Persuasive technology shifted design focus from ease of use to influencing what users do."
"I got invited to be an expert witness on an FTC legal case about deceptive designs, which changed my career."
"From a legal point of view, taking money from people without their true consent is a tangible harm."
"Designers often say 'has it been approved by legal and compliance? Great, let's not worry about privacy anymore.'"
"Deceptive patterns in cookie banners give users false choices that make it harder to reject tracking."
"Systemic deceptive design is harder to regulate because manipulation happens across time and user context."
"Designing for privacy is like designing for accessibility — you should aim beyond mere compliance to user-centered solutions."
"We have too many privacy lawyers and not enough consumer lawyers, which clouds enforcement priorities."
Or choose a question:
More Videos
"Design is a very powerful role and at Airbnb people are ready to engage in it as a collective practice."
Rebecca GimenezWork in Progress: Service Design at Airbnb
December 3, 2024
"Mastercard designers grew meaningfully for both people and business despite uncertainty."
Lada GorlenkoTheme 2 Intro
June 9, 2022
"Put more in than you take out — that’s the rule of thumb I give for contributing to repositories."
Brigette Metzler Dana ChrisfieldResearch Repositories: A global project by the ResearchOps Community
August 27, 2020
"Journey mapping was created with Intersection, founded by Chuck Pelley and Joan Greger, to help us look in the mirror."
Discussion
June 9, 2017
"The policy was about walking distance as the crow flies, but that wasn’t walkable—so the policy needed to change."
Sarah Brooks Jennifer PahlkaFireside chat with Sarah Brooks and Jen Pahlka
October 21, 2021
"Bringing our government Partners in early as collaborators and making a clear case for the value of research is one way that we build trust with our stakeholders."
Lisa Spitz Nikki BrandBuilding Trust Through Equitable Research Practices
November 18, 2022
"Healthcare technology is absolutely a growing market with tremendous opportunity."
Theresa NeilDesigning for Wellness: Specializing in Healthcare
May 22, 2024
"Feeding interview data into ChatGPT helped us develop realistic character profiles and dialogues."
Maverick Chan Claire LinFrom Doodle to Demo: AI as Our Storytelling Partner
October 23, 2025
"Psychological safety can be created or rebuilt very quickly with intentional team exercises."
Alla WeinbergDesign Teams Need Psychological Safety: Here’s How to Create It
September 8, 2022
Latest Books All books
Dig deeper with the Rosenbot
How can research repositories score or show the impact of research recommendations to enhance organizational learning?
How can a product vision avoid becoming just a pretty prototype with no strategic impact?
Why is prior authorization such a persistent problem and how can patient-centered solutions be designed around it?